Apple Called Out in New 'Encrypt It Already' Campaign

[MacRumors]

The non-profit Electronic Frontier Foundation (EFF) today launched an "Encrypt It Already" campaign that calls on tech companies such as Apple, Google, Meta, and others to implement or expand end-to-end encryption on their platforms.

iCloud already provides end-to-end encryption for more than a dozen data categories by default. For users looking for additional protection, Apple offers an optional feature called Advanced Data Protection, which extends end-to-end encryption to iCloud Backup, Notes, Photos, Voice Memos, and more. But, the EFF wants Apple to go further.

For example, the EFF said Apple and Google should deliver on a promise to implement end-to-end encryption for RCS messaging. Last year, Apple said it planned to add support for end-to-end encrypted RCS messages to the Messages app in future iOS, iPadOS, macOS, and watchOS updates, but it did not provide a specific timeframe.

Starting with the iOS 26.3 beta, Apple appears to be laying the groundwork for carriers to be able to support end-to-end encryption for RCS messaging.

iMessage has already supported end-to-end encryption by default since 2011.

The EFF also called on Apple and Google to offer users per-app AI permissions, so Apple Intelligence and Google Gemini can be turned off in certain apps.

The non-profit organization said it is also important how tech companies communicate new implementations of end-to-end encryption. It encouraged the companies to write blog posts that summarize key details, publish technical papers and user documentation that go into further detail, and follow best practices for data minimization.

The EFF encourages people to use Apple's feedback form to let the company know that additional end-to-end encryption support is important to them.

Article Link: Apple Called Out in New 'Encrypt It Already' Campaign

 

[Apple Knowledge Navigator]

The EFF encourages people to use Apple's feedback form to let the company know that additional end-to-end encryption support is important to them.

Well that’s a bad start

 

[Tune]

It's true... Ive been saying this for years! For a company that loves touting "privacy is a human right", they sure don't give two craps what happens once your data leaves the device. They should just release imessage for all platforms so they don't have to implement encryption into RCS. They could essentailly take over the messaging world and dethrown RCS, whatsapp, FB, and *insert your crap-tastic shady crypto bro messaging platform here* (signal/telegram). I say this as an Android user too...

 

[rumorphobe]

Apple already has the best encryption of any major platform, by far

 

[al256]

The neat thing about the future is everyday is a post 9/11 day. I fear that if Apple does move forward with this the federal government will take even more freedoms away and we won't have any meaningful encryption.

 

[goobot]

It's true... Ive been saying this for years! For a company that loves touting "privacy is a human right", they sure don't give two craps what happens once your data leaves the device. They should just release imessage for all platforms so they don't have to implement encryption into RCS. They could essentailly take over the messaging world and dethrown RCS, whatsapp, FB, and *insert your crap-tastic shady crypto bro messaging platform here* (signal/telegram). I say this as an Android user too...

Apple doesn’t have any real incentive to do that unless they decide to riddle the iMessage app with ads.

 

[Tune]

Apple doesn’t have any real incentive to do that unless they decide to riddle the iMessage app with ads.

They really don't. They could use it as a trojan horse to put more apple in your life sort of like the ipod did back in the day.

Also... lets say they do. I doubt many people care. Whatsapp supposedly introduced ads and EU and many other countries still loves that garbage app.

Also also... if they wanted to, they could charge like $20 a year to remove ads. And I would pay it!

 

[montuori]

*insert your crap-tastic shady crypto bro messaging platform here* (signal/telegram).

Huh. I didn't think there was much shady going on with Signal. Have there been incidents that would lead one to believe it's less secure than advertised?

 

[The_Gream]

It's true... Ive been saying this for years! For a company that loves touting "privacy is a human right", they sure don't give two craps what happens once your data leaves the device. They should just release imessage for all platforms so they don't have to implement encryption into RCS. They could essentailly take over the messaging world and dethrown RCS, whatsapp, FB, and *insert your crap-tastic shady crypto bro messaging platform here* (signal/telegram). I say this as an Android user too...

The would not work.

1: some cry baby some where would complain about an Apple monopoly.

2: pretty sure one of the reasons Apple was against RCS was because of the lack of encryption support by the big carriers. Remember, those carriers make money off your info.

3: it was China that finally forced Apple to support RCS even with the lack of encryption support.

 

[kempathonnodge]

Well, the UK government has effectively banned Advanced Data Encryption, by making it illegal to not have backdoor access to encryption.
Until a year ago, it all seemed academic. Since the us has made it official policy to have a right wing leader win our election, I’m already looking to encrypt as much data as possible before the uk makes a data deal with Palentir…

 

[cjsuk]

Well, the UK government has effectively banned Advanced Data Encryption, by making it illegal to not have backdoor access to encryption.
Until a year ago, it all seemed academic. Since the us has made it official policy to have a right wing leader win our election, I’m already looking to encrypt as much data as possible before the uk makes a data deal with Palentir…

The trick is to not encrypt it but keep it offline and inaccessible. The cloud is dead.

 

[centauratlas]

I’d also add that Apple should begin upgrading to quantum safe encryption. Right now the 3 letter agencies are grabbing everything in the cloud and if encryption is broken it will all be an open book. Planning now will protect a lot of information in the future. Apple’s encryption now is quite good but this is an Achilles heal.

 

[BeatsByTim]

I'm pretty sure Apple doesn't give a fly's fart about EFF.

 

[HouseLannister]

The wait for RCS UP 3 without any updates since Spring is upsetting. I thought they learned their lesson about talking about features before they were ready, but they keep repeating the same mistakes.

 

[Unregistered 4U]

The EFF, a non-profit organization (desperate for attention I suppose?) are calling out for-profit companies to do a thing that not all regions of the world have clearly defined will not be an illegal step to take. I suppose if the EFF is essentially saying they’re putting THEIR dollars on the line to take up the slack when the EU or the UK or someone else slaps Apple for making it so these regions can’t spy on their customers… then I approve of them putting their money where their mouth is.

 

[LV426]

Well, the UK government has effectively banned Advanced Data Encryption, by making it illegal to not have backdoor access to encryption.
Until a year ago, it all seemed academic. Since the us has made it official policy to have a right wing leader win our election, I’m already looking to encrypt as much data as possible before the uk makes a data deal with Palentir…

It's still in the air. I'm a UK user and Advanced Data Protection is still enabled for me. AFAIK, Apple are only removing this feature for new UK user accounts.

 

[Unregistered 4U]

The would not work.

1: some cry baby some where would complain about an Apple monopoly.

2: pretty sure one of the reasons Apple was against RCS was because of the lack of encryption support by the big carriers. Remember, those carriers make money off your info.

3: it was China that finally forced Apple to support RCS even with the lack of encryption support.

Very yes on all counts.

 

[Delivered]

Apple already has the best encryption of any major platform, by far

Based on what evidence/source?

 

[Delivered]

The trick is to not encrypt it but keep it offline and inaccessible. The cloud is dead.

Apple syncs everything by default. I have found it impossible to use without things syncing esp since moving data between apps is obnoxious. I switched to Apple once and didn’t use iCloud and didn’t use only Apple stuff and I don’t make it a year.

I tried going full ecosystem and now I’m stuck. I’m not even sure how to get all of my data off the Apple system and all of it is accessible from all my Apple devices. I wouldn’t begin to figure out how much effort it would be to run a local only iPhone at that point I’d use Android. It was far easier to be local only on Android.

 

[Black_Mage]

Have any of you wondered why the government isn't opposed to encryption? Because something called client-side scanning has the potential to render encryption useless. I have no doubt Google will implement it if they haven't already.

 

[Macaholic868]

Huh. I didn't think there was much shady going on with Signal. Have there been incidents that would lead one to believe it's less secure than advertised?

Ask Mike Waltz why it’s not a good idea to assume Signal is secure. Yes, adding in Jeffrey Goldberg was a mistake, but there’s a reason both the US government and well as many private security analysts will tell you using it to discuss highly sensitive, in that case classified, information is no-no. Foreign governments can still get their hands on data that’s supposed to be encrypted. If they can, the US government can. So what’s the point?

 

[Baritone_Guy]

Apple doesn’t have any real incentive to do that unless they decide to riddle the iMessage app with ads.

The wait for RCS UP 3 without any updates since Spring is upsetting. I thought they learned their lesson about talking about features before they were ready, but they keep repeating the same mistakes.

The requires carrier support as Apple will not send this through Google’s Jibe infrastructure.

 

[grammatica]

I'm glad EFF is advocating for more encryption. Apple is on the few companies that has end-to-end encryption on core products. (Some iCloud data is not end-to-end encrypted.) Google has a similar program name to "Advanced Data Protection," but it's a misnomer. It only provides more security options, not end-to-end encryption.