How to Enable Lockdown Mode for Heightened Security on iPhone and iPad

[Jim Lahey]

But, even if the shortcut was not there, if the government had physical access to your device, they could STILL get pictures ON your device and INTO your iCloud.

I’m done debating it. If the shortcut were optional then those who don’t like the security compromise could disable it. If you disagree that it’s a compromise at all then that’s fine but if so then there’s nothing else to discuss 👍

 

[Stewie]

Because I don’t want any Tom, Dick or Harry to be able to take unsolicited photos using my camera and have them automatically uploaded to my iCloud account without my express knowledge. Especially in a so-called Lockdown Mode. Apple’s absolute refusal to address this problem makes me suspicious that it’s a vector of entry for the feds. It’s not even necessary in the era of Face ID so there’s no excuse for it not being an optional toggle.

First rule of security it don't give anyone else access to your device. If you are letting Tom, Dick or Harry get access to your phone, you have already failed and no amount of on device security is going to help you.

 

[Jim Lahey]

First rule of security it don't give anyone else access to your device. If you are letting Tom, Dick or Harry get access to your phone, you have already failed and no amount of on device security is going to help you.

Good point. Let’s eliminate passcodes and biometrics as well then.

 

[cSalmon]

First rule of security it don't give anyone else access to your device. If you are letting Tom, Dick or Harry get access to your phone, you have already failed and no amount of on device security is going to help you.

have you never been in a room where you have to leave all electronics outside?

 

[Unregistered 4U]

First rule of security it don't give anyone else access to your device. If you are letting Tom, Dick or Harry get access to your phone, you have already failed and no amount of on device security is going to help you.

There was a post where someone was wondering, “Why can’t I password protect images and photos?“ and bemoaning the fact that ”Hidden” photos are just hidden from showing up as choices in your album, but the images were absolutely still there.

When I asked what would they use it for, they indicated that they wanted to be the kind of person that if a stranger asked them if they could borrow their iPhone, they wanted to be able to give them their phone without worrying about the stranger going through their images and finding them! There may be many folks that grew up in the world of “phone as a single purpose object” that don’t really understand why solving for “giving someone my phone” is the wrong way to look at the problem.

 

[MacBH928]

To be fair I understand that a lot of the content is end-to-end? But I’m almost certain that what you say applies to the entire device backup in iCloud. Apple doesn’t even make this overtly clear to its users which is, again, suspicious. First thing any wannabe Snowdon does with their iPhone/iPad is disable iCloud backups and delete any pre-existing.

its confusing how they word it to know what is encrypted what is not, plus there will be the instance where they found they lied about encryption and made them pay $500K fine.

So far I think imessage is encrypted but the iCloud files are not, as in yes they can access them.

 

[Jim Lahey]

its confusing how they word it to know what is encrypted what is not, plus there will be the instance where they found they lied about encryption and made them pay $500K fine.

So far I think imessage is encrypted but the iCloud files are not, as in yes they can access them.

This seems like a pretty decent article vis-à-vis iCloud encryption, or lack of it as the case may be from some perspectives 👍

As an aside, I’d also like to know why, at some point along the timeline, Apple decided to consolidate web history and web data (login cookies) thus making it more likely that most users will rarely or never delete their browsing history from iCloud 🤔

 

[spcopsmac21]

With the release of iOS 16 and iPadOS 16, Apple introduced Lockdown Mode, offering users an "extreme" level of security. This article explains who Lockdown Mode is for, what it does, and how to enable it.

In iOS 16 and iPadOS 16, Apple brought iPhone and iPad users Lockdown Mode, an optional new security feature that's designed to protect users who may be at risk of highly targeted cyberattacks from private companies developing state-sponsored spyware.

While the feature is aimed at the very small number of users who could be targets of cyberattacks, such as journalists, activists, and government employees, any user can enable it on their device for what Apple calls an "extreme" level of security.

Lockdown Mode Protections

When enabled, Lockdown Mode strictly limits or disables the functionality of features, apps, and websites. Lockdown Mode protections include the following:

• In the Messages app, most message attachment types other than images are blocked, and some features like link previews are unavailable.
• Incoming FaceTime calls from people you have not previously called are blocked. Incoming invitations for other Apple services from people you have not previously invited are also blocked.
• Some complex web technologies and browsing features, including just-in-time (JIT) JavaScript compilation, are disabled unless the user excludes a trusted site from Lockdown Mode. This protection applies to Safari and all other web browsers using WebKit across the iPhone, iPad, and Mac.
• Shared albums will be removed from the Photos app, and new shared album invitations will be blocked.
• When a device is locked, wired connections with other devices/accessories are blocked.
• Configuration profiles cannot be installed, and the device cannot enroll into mobile device management (MDM), while Lockdown Mode is turned on.

How to Enable Lockdown Mode on iPhone and iPad

Lockdown Mode is turned off by default on iPhone and iPad, but you can enable it by following these steps.

1. Launch the Settings app.
2. Scroll down and tap Privacy & Security.
3. Scroll to the bottom of the menu and under "Security," tap Lockdown Mode.
4. Read the on-screen information, then tap Turn On Lockdown Mode.
5. Review the list of protections. If you're still happy to go ahead, tap Turn On Lockdown Mode.

Apple has added a new category to its Security Bounty program to reward researchers who find Lockdown Mode bypasses and help improve its protections, so expect new protections to be added over time.

Article Link: How to Enable Lockdown Mode for Heightened Security on iPhone and iPad

The issue here is I can still see information coming and going through my iPhone, I have a raspberry pi set up as a PiHole.
It’s not stopping everything

 

[MacBH928]

This seems like a pretty decent article vis-à-vis iCloud encryption, or lack of it as the case may be from some perspectives 👍

As an aside, I’d also like to know why, at some point along the timeline, Apple decided to consolidate web history and web data (login cookies) thus making it more likely that most users will rarely or never delete their browsing history from iCloud 🤔

*******
hotogeek.com:

However, the company dropped plans to let its users fully encrypt backups after the FBI complained that this would make it more difficult for law enforcement to get iPhone users’ data.

Whats in your phone stays in your phone🤣🤣🤣

 

[sparkinstx]

"Configuration profiles cannot be installed, and the device cannot enroll into mobile device management (MDM), while Lockdown Mode is turned on."

What if your device is already enrolled in an MDM? Can you enable Lockdown Mode? How might it affect your MDM?

 

[Unregistered 4U]

I’m done debating it. If the shortcut were optional then those who don’t like the security compromise could disable it. If you disagree that it’s a compromise at all then that’s fine but if so then there’s nothing else to discuss 👍

I said I’m sure it’s a compromise. I just don’t know how it’d work. Perhaps it’s something I or others should worry about? Even searching, I only find:

If you swipes left on the screen, it will open up the camera even if the phone is screen locked. While this feature is quite useful to take snaps quickly, it also compromises your privacy. For instance, anyone can take photos without your permission.

But, they don’t explain how taking a photo compromises your privacy. It could be that it’s only a risk for people who share their Photos library in a family situation and, for those that aren’t sharing their photos library on an Apple TV where family has access to it, there’s no risk. I just can’t find anyone spelling out the risk.

 

[Unregistered 4U]

"Configuration profiles cannot be installed, and the device cannot enroll into mobile device management (MDM), while Lockdown Mode is turned on."

What if your device is already enrolled in an MDM? Can you enable Lockdown Mode? How might it affect your MDM?

My guess is that Lockdown Mode would fail as the user doesn’t have the ability or permission to put the device in Lockdown Mode. Those permissions would be held by the entity that enrolled the device. And, considering that MDM kinda needs to know a lot about the device at all time THEY couldn’t put it into Lockdown Mode either. However, I’d bet that they could, feature by feature, enable many of the same protections.

 

[_Spinn_]

I had this enabled for about 2 weeks. The only thing that was really annoying was inability to view media files sent to me via SMS. Otherwise, I can't say I missed anything else.

This is probably the only thing I would miss as well.