The Apple T2 Security Chip, our second-generation custom Mac silicon, brings industry-leading security to Mac. It features a Secure Enclave coprocessor, which provides the foundation for APFS encrypted storage, secure boot, and Touch ID on Mac. In addition to the security components, the T2 chip integrates several controllers found in other Mac systems—like the system management controller, image signal processor, audio controller, and SSD controller.
This white paper has been released by Apple a few weeks ago and explains what are the security features available from the new T2 chip that they are installing on their newest laptops.
I found this extremely interesting! I don’t recall any other manufacturer that has such a deep integration between hardware and software and can provide this level of security for their customers.
The only problem I have here is that this is that we need to trust Apple (and their supplier) to not have any unintentional (or intentional) bug in the code that would compromise the security of the chip and the whole system. But, if we trust Apple on this, the newest laptops are some of the most secure hardware you could buy.