Apple should stop all services in the UK. Let them eat cake.
Most definitely will set off mass protests against the government.
Most definitely will set off mass protests against the government.
Got a tip for us?
Let us know
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.
Could Apple Pull iCloud Services From the UK Market?
- Thread starter MacRumors
- Start date
- Sort by reaction score
Let Apple, and everyone else, abandon the UK. For a small group of countries that wanted to go it alone, let them really be alone. The UK government is in no position to make such demands about gaining private backdoor access to Apple’s infrastructure. I better not publish this post, or else the British police will arrest me for words. Oh, wait…they lost 1776 so I don’t have to worry about that. Tyrants 👍
Well, for one thing the UK request is broader, it’s for all users everywhere.
For another, practically speaking, size of the market. The UK is a much smaller market to care about.
Issue 1 is probably the main problem though, China only forces this on things in China, the UK trying to enforce this for Apple’s entire global presence is a much bigger problem.
I
There is one thing I don't understand: If iCloud data is end-to-end encrypted, and there are no backdoors, how can anyone apart from the user access that data?
Am I missing something?
I read the article.They did actually. All E2EE encrypted Apple services store keys on a server hosted in China with government access.
Outside of China Apple doesn’t store keys at all.
Apple officially moves its Chinese iCloud operations and encryption keys to China
Experts say the move could force Apple to obey various government requests to access Chinese iCloud data.www.theverge.com
There is one thing I don't understand: If iCloud data is end-to-end encrypted, and there are no backdoors, how can anyone apart from the user access that data?
Am I missing something?
Someone please explain to me how the UK can demand access to my data when I’m a citizen of another country, and don’t plan on setting foot on their territory? Sounds like madness to me.
Sigh. Yes you do.
Bank accounts, shopping info, credit cards, conversations between people who asked you to keep their info between you and them, that thing you talked to your doctor about… military movements, undercover agents, covert operations… badge access to the room where the nuclear weapons are held…
Encryption is encryption. Breaking one breaks them all.
As I understand it, Apple didn't create any global backdoors, but rather just created a special setup for customers in China. They don't get ADP / E2EE.
Well, the police in the UK think they can come arrest Americans for posting negative things online about them. Still bitter over 1776, I see…
The way things work in the US, good luck to FBI. They've already lost this battle at least once.
Great!
Would you be so kind and post your credit card and bank account information? Also, please provide a photo of your drivers license, passport, social security card, and last three years of taxes filings!
Thank you in advance!
I would assume they escrow the key in china, same way a corp managed mac would escrow the filevault key for IT.
If I am not mistaken, the US is asking for the data stored in iCloud. If some of that data is protected by E2EE and if Apple doesn't have the encryption keys, the US gov't can't do much with that data, unless they are able to break the encryption themselves. All they get is an encrypted blob.
The UK is requesting Apple to provide a backdoor to defeat their own encryption. This is bad on a completely new level. Not only is this infinitely more intrusive, but it would also create a channel that can - and will, eventually - be abused by cybercriminals.
Apple users in China don't get the E2EE that we get in the rest of the world.
Detective work. This is what detectives do.
A tool with multiple purposes cannot be outlawed just because one of those purposes is to cause harm or “infringing activity”. Vis à vis: knives, guns, the VCR, dinner fork, rope, your fist, encryption (admittedly, this is a US-based perspective; SCOTUS 1984, Sony v. Universal Studios).
Where does it end? How far will that line get drawn? Do we all have to live being held at gunpoint by “the authorities” to ensure we aren’t engaging in “infringing activity”?
Granted, we don’t get the government we want, but rather the government we deserve. Elections have consequences.
UK had about 3.6% of total worldwide iPhone sales in 2023. While this is not a minuscule percentage, it's certainly not enough to give up one of the main selling points of ecosystem.
The Chinese gov't didn't ask Apple to provide a backdoor to encryption used worldwide. They asked Apple to completely remove the encryption for users in China. Essentially Apple provides different service in China than in the rest of the world.
Given this is a universal request for access to data from all users worldwide, I don’t see that Apple have any choice but to withdraw iCloud services from the UK. However, again given it’s a universal request, I’m unclear whether that would be enough to mean they would not have to comply, or would they need to withdraw entirely from the UK market: cease selling all Apple products in the UK? It’s quite a mess.
Please refrain from using words that you don’t understand.
I’ve got a friend who keeps telling me that the current government is communist too, so which is it?! (I’m not actually asking)
Yep. And we had to make backups manually on floppy disks. It was the best of times, it was the worst of times.
And at least in the U.S. case, the one cited by sw1tcher occurred before Apple offered E2EE, and E2EE is still not enabled by default.
That’s something I have assumed all along: privacy protection is mere corporate slogan to get some cheap PR. And an easy standout compared to Google, one of their primary competitors. There might not be backdoors in the end, but sophisticated systems that hand over data, we may never know. After all, Apple care about ONLY money, and literally nothing else.
Still a fun story to follow though.
Apple can also introduce UK local companies to manage UK users data, same as how they manage iCloud access in China. For the most part, people will not delve into the complication much, and Apple might be able to get away with this legislation earthquake for now.
I find it particularly funny and puzzling is UK is one of the Five Eye alliance sharing intelligence data across. Why UK wants to copy China? And the precedent is devastating too no matter how it happens. It could lead to the scenario where Apple will be forced to rent/build local data centres so iCloud can be done the same way as iCloud in China.
Then following that logic, we should outlaw people as fist fight can cause bodily harm and the very source of such harm is, guess what, people.
Everything, I repeat, EVERYTHING, can be misused for nefarious purposes, including human. Yet supermarkets still sell kitchen knives, hardware stores still sell big scissors for gardening work. It’s all about managing the risk not just avoiding it. Heck, even in your body, there are good germs working hard to help maintaining your health too.
No, because even without ADP, iCloud still end-to-end encrypts some data. Apple cannot decrypt that data regardless of ADP.
Conversely, note that ADP applies end-to-end encryption to significantly more data, but not all. As example emails are not end-to-end encrypted even with ADP active.
You can find which data is end-to-end encrypted with and without ADP here.
It would be not surprising to have less legal protections for your privacy as foreign citizen abroad. Not sure about UK law, but take as example the FISA Amendments Act of 2008 in the US: