I knew Apple used these services, but i had assumed that part happened after it uploaded to iCloud from device and never had a problem due to blocking both of them until yesterday. Seeing it a lot with Photos app uploading new pics to iCloud and Files app uploading new items to iCloud and some downloads to device from iCloud.
So for these Apple apps directly connecting 3rd party server to store on iCloud (or download) I assume the data is encrypted straight out of app in real time before upload starts (i hope) but if device & apps are connecting directly to googleapis and amazonaws would they be getting basic info about device and IP address now that they wouldn’t get if upload’s & downloads directly used apple server/service first and then in iCloud - “Each file is broken into chunks and encrypted by iCloud using AES-128 and a key derived from each chunk’s contents that utilizes SHA-256. The keys and the file’s metadata are stored by Apple in the user’s iCloud account. The encrypted chunks of the file are stored, without any user-identifying information, using third-party storage services, such as S3 and Google Cloud Platform.”
They eventually upload or download, but it’s now a very slow process. It’s just strange it’s happening every time for past couple of days but before this since using DNS filtering to block these two I had never had a problem or ever saw these being listed as blocked before on this device for these same actions and Photos & Files apps using iCloud (only change is updating to iOS 14.2 release candidate but this didn’t start immediately after update).
i know this is MacOS thread but was searching for articles on it.
