At the Mac's future operating system presentation event, macos catalina, Apple has brought security to the fore.
macOS Catalina will be Apple's first operating system that will have its own volume for system files and it will be read-only. This change will definitely bring about an improvement in security.
We have tested the future operating system with an upgrade from MacOS Mojave to macOS Catalina Public Beta, and the first thing that attracted our attention was the presence of two separate volumes (virtual partitions on SSD) instead of one. A volume dedicated to the operating system (macOS) and one for the user data (macOS data).
If you bother to see two or three drives instead of one, you must know that they all belong to the same "containter disk"And the free space on your hard drive will not be affected by this change. Practically, the volume dedicated to the operating system is the same as the data container, except that the layout only allows you to read the files. Changing and writing external system files is blocked.
Turning back a little while, we see that Apple has been on the hook repeatedly with vulnerabilities of MacOS systems. Even if many of the vulnerabilities have not been exploited by bad guys, the American company has been looking for the whole thing to innovate on the security side. So with the release of MacOS El Capitan, Apple introduced "Integrity Protection System (SIP)". A technology designed not allow modification of system files and folders.
SIP limits access to the root user, thus preventing macOS integrity. In spite of these security enhancements, ways have been found to bypass SIP protection and install malicious software that overwrites and modifies system files.
With the switch to MacOS Catalina, Apple moves the operating system to its own volume and develops a new type of symbolic bidirectional link, named firmlink, managing to make two volumes to integrate and work as one.
macOS Catalina is currently only available in Beta for subscribers in the Apple Beta Software Program, and will be released this fall, available for free to all users.