UK makes new attempt to access Apple cloud data
The UK government has issued a new order to Apple to create a backdoor into its cloud storage service, this time targeting only British users’ data, despite US claims that Britain had abandoned all attempts to break the tech giant’s encryption.
The UK Home Office demanded in early September that Apple create a means to allow officials access to encrypted cloud backups, but stipulated that the order applied only to British citizens’ data, according to people briefed on the matter.
A previous technical capability notice (TCN) issued in January sought global access to encrypted user data. That move sparked a diplomatic clash between the UK and US governments and threatened to derail the two nations’ efforts to secure a trade agreement.
In February, Apple withdrew its most secure cloud storage service, iCloud Advanced Data Protection, from the UK. It said at the time: “As we have said many times before, we have never built a back door or master key to any of our products or services and we never will.”
Apple did not immediately respond to a request for comment. The Home Office did not immediately comment. Both are restricted from discussing TCNs by law.
Apple should lock up ever more data in Advanced Data Protection mode and make it available with the best security and encryption expertise and money can buy - instead of fighting this with the government. If done well, governments will request Apple to make a backdoor and we’ll be back at the same issue.
There will need to be an uprising when the government outlaws encryption for Apple (and others) to keep being alive and functional in the UK because not having encryption is going to end badly for all.
Is there no one sane in the government who can’t see these writings on the wall?
I don’t know how this would even be possible.
What they are saying is that they want an entirely new version of ADP for British users right? Not a backdoor that only works for British users? That latter would be a de-facto backdoor to all users regardless of jurisdiction.
Even if they create an entirely new version of ADP for British Apple IDs, will it even be useful for them? An easy workaround would be to switch your account to another country and use a VPN on top of that. I’m sure that only evil terrorists and predators are using ADP to store their files. Totally not regular civilians.
This is clearly a mass surveillance play by the current British government.
Not in so many words but yeah, that’s what it would mean and how it would be possible, if at all they do it.
This would require a user to have a foreign banking credentials and address to change the credit card details and address - this is my understanding.
Yes indeed!
Fair point. However, I think a lot of the folks they’re targeting are not always British citizens exclusively.
For example, going after suspected intelligence operatives or transnational terrorists will be difficult because they have access to foreign addresses and payment methods anyways. Same goes for the folks involved with white-collar or financial crimes with multiple citizenships.
Unless the main objective are folks hiding illegal content in their iCloud Drive (i.e. pirated files, CSAM, WhatsApp backups containing trade secrets). A backdoor can work then, but wouldn’t that encourage folks to use offline methods? At this point, the whack-a-mole thing would just harm the average person.
These crimes has always existed before the concept of encrypted messaging and cloud storage. The UK might as well just ban encryption at this point lol
Don’t you think these are those baby steps to see what they can do and get away with? It did not work before, perhaps they’re trying to again in a different way to see if this works. And they will until they get what they want, one way or the other.
Sad state of affairs - this is how the West falls or is falling. China is salivating here I’m sure.