Post

Replies

Boosts

Views

Activity

Comment on Requesting guidance on Endpoint Security entitlement (com.apple.developer.endpoint-security.client) for per-process network connection telemetry on managed macOS
Thanks for the clarification, that helps a lot. For our use case (per-process connection metadata: process identity, destination IP/port, timestamps, no payload inspection), would a Network Extension content filter (NEFilterDataProvider) be the recommended approach? Specifically, can NEFilterFlow provide reliable process attribution + connection metadata without requiring full traffic interception? Our deployment is strictly MDM-managed enterprise devices.
Topic: Privacy & Security SubTopic: General Tags:
May ’26
Comment on Requesting guidance on Endpoint Security entitlement (com.apple.developer.endpoint-security.client) for per-process network connection telemetry on managed macOS
Thanks for the clarification, that helps a lot. For our use case (per-process connection metadata: process identity, destination IP/port, timestamps, no payload inspection), would a Network Extension content filter (NEFilterDataProvider) be the recommended approach? Specifically, can NEFilterFlow provide reliable process attribution + connection metadata without requiring full traffic interception? Our deployment is strictly MDM-managed enterprise devices.
Topic: Privacy & Security SubTopic: General Tags:
Replies
Boosts
Views
Activity
May ’26