![[personal profile]](https://www.dreamwidth.org/img/silk/identity/user.png){kind=small}
thewayneThis was a government order. And it was a secret. Apple was not allowed to reveal the order. The purpose of the order was allegedly to make it easier for the government to find CSAM, explicit child pornography. It was, in fact, admitting that they were not being very good at their investigations and wanted Apple to make it easier for them.
So Apple broadcast not only that they received the order, they actually broadcast the text of it.
And now they've announced that they are turning off ADP, Advanced Data Protection, a form of advanced encryption of iCloud information in the UK to comply with the order. If you turn on ADP, the only person who can access your data is YOU, which also means that you can lose it. That's the risk of encryption.
Apple basically engaged in naming and shaming the government, good for them! The Home Office said "We do not comment on operational matters, including for example confirming or denying the existence of any such notices." As of this time, Apple users in the UK can no longer turn on ADP, it is expected that with a future update it will be turned off for users who previously activated it.
Without ADP, the information is still encrypted, but it is done in such a way that if the government serves Apple with a warrant, Apple can get at the information. Need I remind people about an incident that I posted about a month or so ago about a back door that the U.S. government required telecommunications providers to install for surveillance purposes that the Chinese have cracked? Several telcom providers have been compromised, and it's an extreme fight to keep them out - it's an on-going problem.
I can't wait for a British tabloid to get ahold of some MP or Lord's data and splash it all over their paper.
https://www.bbc.com/news/articles/cgj54eq4vejo
https://apple.slashdot.org/story/25/02/21/1529255/apple-removes-cloud-encryption-feature-from-uk-after-backdoor-order
So Apple broadcast not only that they received the order, they actually broadcast the text of it.
And now they've announced that they are turning off ADP, Advanced Data Protection, a form of advanced encryption of iCloud information in the UK to comply with the order. If you turn on ADP, the only person who can access your data is YOU, which also means that you can lose it. That's the risk of encryption.
Apple basically engaged in naming and shaming the government, good for them! The Home Office said "We do not comment on operational matters, including for example confirming or denying the existence of any such notices." As of this time, Apple users in the UK can no longer turn on ADP, it is expected that with a future update it will be turned off for users who previously activated it.
Without ADP, the information is still encrypted, but it is done in such a way that if the government serves Apple with a warrant, Apple can get at the information. Need I remind people about an incident that I posted about a month or so ago about a back door that the U.S. government required telecommunications providers to install for surveillance purposes that the Chinese have cracked? Several telcom providers have been compromised, and it's an extreme fight to keep them out - it's an on-going problem.
I can't wait for a British tabloid to get ahold of some MP or Lord's data and splash it all over their paper.
https://www.bbc.com/news/articles/cgj54eq4vejo
https://apple.slashdot.org/story/25/02/21/1529255/apple-removes-cloud-encryption-feature-from-uk-after-backdoor-order
no subject
Date: 2025-02-23 01:59 pm (UTC)dataCSAM and splash it all over their paper.FTFY
no subject
Date: 2025-02-23 05:05 pm (UTC)Heh.
no subject
Date: 2025-02-23 02:08 pm (UTC)no subject
Date: 2025-02-23 05:06 pm (UTC)Apparently the phrase "What is sauce for the goose is sauce for the gander" has fallen out of style.
no subject
Date: 2025-02-23 02:34 pm (UTC)Hugs, Jon
no subject
Date: 2025-02-23 03:31 pm (UTC)no subject
Date: 2025-02-23 05:52 pm (UTC)Originally I heard the heads of very major Silicone Valley corporations say publicaly that they would never be able to make the "cloud" safe from hacking. Then I worked hackers conventions. Nope, nope, not putting any data on my phone. Pretty much no one else I know feels this way.
So now I need to be able to do some kind of electronic payment for my events. Probably Zelle is my best choice. I won't do Pay Pal for historical reasons. Any suggestions on how I stay safe? Use a burner? Just saying I only accept cash is probably not viable. Yeah, I know, I don't work hacker conventions any more and I'm not living in a city where people capable of hacking my phone/bank acct walk past every few minutes -- but. Oh, and yes I have individual, different passwords for absolutely everything.
no subject
Date: 2025-02-23 06:17 pm (UTC)It's a nasty world out there, and there's so many reasons why we can't have nice stuff, such as what the UK government is doing. I use contactless payments through my watch, which has a high level of encryption. But occasionally it doesn't work, like last night at the movies when their terminals insisted my new card was expired and I had to stick it in the slot for their chip reader to read my chip. They haven't replaced their terminals in ages, it's a cheap operation. Many times I've considered getting a flip phone with a 4G/5G hot spot built in, and using an iPod Touch for other things. But now the iPod is no longer made.
no subject
Date: 2025-02-24 03:38 pm (UTC)no subject
Date: 2025-02-23 11:19 pm (UTC)no subject
Date: 2025-02-24 06:23 am (UTC)Still, good on Apple for thumbing their nose at the secrecy part of the request. People deserve to know when their privacy is being compromised by the government for a optimistically negligible benefit in the rate of crime.