this post was submitted on 07 Feb 2025
28 points (100.0% liked)

Privacy

0 readers
80 users here now

Everything about privacy (the confidentiality pillar of security) -- but not restricted to infosec. Offline privacy is also relevant here.

founded 1 year ago
MODERATORS
[email protected]
28
If Apple complies with this, the UK government will gain access to all iCloud data globally. The only way Apple comes out of this with any integrity is to leave the UK market. If they give in to this, (mastodon.ar.al)
submitted 2 days ago by [email protected] to c/[email protected]
20 comments fedilink hide all child comments
 

If Apple complies with this, the UK government will gain access to all iCloud data globally. The only way Apple comes out of this with any integrity is to leave the UK market. If they give in to this, every regime in the world will demand the same thing. And that’s before we even get to the fact that there’s no such thing a “backdoor” for just so-and-so. Either there is a door or there isn’t and if there is, anyone who obtains the key can use it.

https://www.theguardian.com/technology/2025/feb/07/uk-confronts-apple-with-demand-for-cloud-backdoor-to-users-encrypted-data

#apple #backdoor #UK #encryption #privacy #security #personhood #data #democracy #humanRights #iCloud

you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 3 points 2 days ago (1 children)

@[email protected] I don't think Apple can even comply with this sort of request. They have never wavered on this and in fact have continued to make it even progressively more difficult with every major and even minor releases. One of my iCloud accounts (I created one for my former employer) is entirely self-managed via u2f/fido2 tokens, it doesn't use Apple's MFA at all, and i disable imessage in the cloud so they're not decrypted there. now what, guvner?

nothing stops them from doing police work does it?

[–] [email protected] 1 points 2 days ago (2 children)

@[email protected] They already capitulated to China by storing iCloud data locally. I’m pretty sure China didn’t ask for that because they wanted data they couldn’t read stored closer to home.

https://www.bbc.com/news/technology-57186275

[–] [email protected] 1 points 2 days ago

@[email protected] data governance and sovereignty requirements for businesses or orgs isn't unusual, in higher ed for example you need to store data in the US; china probably has a ton of requirements like that. google has been doing it almost as long as yahoo i think.

[–] [email protected] 1 points 2 days ago

@[email protected] do you believe that china can gain unauthorized access to iCloud account data without cooperation or the user providing their credentials? i thought they could use fido2 keys in china?

https://readwise.io/reader/shared/01jkkc4eamhvefmcexe5es8pfn