This is one thing Apple has been pretty firm on. You can’t have a secure product and have backdoors. You can try to hide them all you want, but a backdoor will always be a massive security vulnerability.
Chinese authorities can now get a Chinese legal order and tell Apple’s local partner to hand over user data. The local partner (and by extension Apple) will have no choice but to comply with the order.
Apple’s statement to Reuters is quite telling. “While we advocated against iCloud being subject to these laws, we were ultimately unsuccessful,” The company told Reuters. Apple simply couldn’t win this fight.
They moved the storage of encryption keys for Chinese users to servers in China instead of shutting down iMessage and Facetime. Quite the different response compared to here.
They moved the storage of encryption keys for Chinese users to servers in China instead of shutting down iMessage and Facetime. Quite the different response compared to here.
I was assuming Apple was posturing until they'd actually have to do something.
They could well have postured in China as well, before backtracking. I have no Idea if that happened, but it seems reasonable from a PR vs Legal vs business development standpoint.
They moved the storage of encryption keys for Chinese users to servers in China instead of shutting down iMessage and Facetime.
These are totally separate things. Apple users in China can still use iMessage and FaceTime and those are still end-to-end encrypted. If you choose to store your iMessages in iCloud, those can be accessed by the government, but that's the same as they can in every other country. The UK's proposal is to directly break the security of iMessage itself, something worse than what China has done.
I agree that's not how it works in most places but I don't assume to know the inner working of a Chinese iphone or the version of iOS it's running. If there is a financial incentive apple will bend for China while also saying it didn't.
Right but none of it is open source so being extensively documented doesn't mean much and what I said still stands. You are assuming that what apple has told you is the truth with zero 3rd party audits of the underlying code.