Tim Cook Highlights Apple's iOS 15 Privacy Protections in New Video for European Audiences

[bobtem]

“introducing countless features”….

Translation: countless settings and verification dialogs that make it really annoying to use.

While it’s good that Apple is addressing “privacy”, just throwing up more settings dialogs is not the answer. It gets so disruptive to have to “confirm” every little task. And some “features” are not really even a privacy concern - apps asking permission to access other apps… ugh.

 

[MBAir2010]

more from this TC speech:
"Our Privacy Policy begins with your credit card number, we need that so you can use our iPhone devices.
without the credit card, our iphones will not work.
This is our standard, sheep!"

 

[WannaGoMac]

iCloud backups for your phone or iPad are encrypted in the cloud. The problem is Apple has the key for those backups and can unlock them when they have to. If you want peace of mind, create a Cryptomator folder in iCloud, and move your backups to that folder. Apple won't be able to access anything in that folder much less see file names etc. When you want to use the backup, you would have to download it to your Mac and decrypt.

As to iMessage, turn off messages in the cloud. Apple also holds the access key for your messages with the feature enabled.

Edited to add: Thumbs down all you want, Sinoka. What I said is true. If you want to show I am wrong, have at it.

You can move the auto icloud backups into an encrypted folder? What happens when incremental update occurs?

 

[Apple_Robert]

You can move the auto icloud backups into an encrypted folder? What happens when incremental update occurs?

You have to move the backup each time a backup is made, if you want it to be encrypted.

 

[Ubuntu]

Oh, really? First time you noticed that in capitalism there is no room for the consumer’s best interest?

Not quite, more that Tim Cook seemed like one of the genuinely better CEOs around. For example, his infamous "I don't care about the bloody ROI" comment. I was skeptical then, but hopeful that he was genuinely one of the better ones.

 

[Freida]

Thank you but that still doesn't answer my question. With VPN you kinda have to trust that the VPN provider is "honest" so my question was, if Apple encrypts it first on the device before it goes through VPN or not. Ie, what takes priority.

The reason is, if Apple encrypts it and then it goes through VPN then technically even if VPN provider becomes malicious then there is not much they can do with the data as its already encrypted by Apple. However, if that is not the case then what would be more secure?

Would VPN + Apple's new privacy work better or it would be the same as VPN gets everything first?

If you want to mask general home country etc., the relay will not do that, whereas a VPN will. With the relay, traffic is encrypted at two different places so that no one else can see the places you are accessing. I don't believe the relay is meant to replace a VPN. And to my knowledge, Cloudfare does not work with alll VPNs at the same time, unless something has changed recently.

If I am in error on a point, someone please correct me.

 

[Apple_Robert]

Thank you but that still doesn't answer my question. With VPN you kinda have to trust that the VPN provider is "honest" so my question was, if Apple encrypts it first on the device before it goes through VPN or not. Ie, what takes priority.

The reason is, if Apple encrypts it and then it goes through VPN then technically even if VPN provider becomes malicious then there is not much they can do with the data as its already encrypted by Apple. However, if that is not the case then what would be more secure?

Would VPN + Apple's new privacy work better or it would be the same as VPN gets everything first?

It is my understanding that the data is encrypted once it reaches Apple and is then encrypted again once it is send out from Apple. It only works in Safari.

 

[Freida]

Right, so basically using VPN means that the VPN gets the data first and therefore we really on VPN's honesty

It is my understanding that the data is encrypted once it reaches Apple and is then encrypted again once it is send out from Apple. It only works in Safari.

 

[Apple_Robert]

Right, so basically using VPN means that the VPN gets the data first and therefore we really on VPN's honesty

You are correct. When using a VPN, aid provider gets your traffic and you have to trust they aren't reading your logs and collecting them.

 

[WannaGoMac]

You have to move the backup each time a backup is made, if you want it to be encrypted.

So potentially your data is still exposed, as I assume the original location has a backup made by Apple as part of normal file operations, before you moved the file to a new location. If that makes sense ...

 

[Apple_Robert]

So potentially your data is still exposed, as I assume the original location has a backup made by Apple as part of normal file operations, before you moved the file to a new location. If that makes sense ...

That makes sense. I don't know if Apple does that or not. To get around that, it is best to store on Sync.com and locally. That way you have 2 encrypted copies.

 

[hans1972]

Stop accepting money from Google and stop responding to subpoenas then I'll believe that Apple somehow defends your privacy.

Privacy != secrecy.

The main purpose of privacy isn't to hide information from the government.

It is foremost to have a certain amount of control over your personal information, what it is being used for and the ability to correct the info if it is wrong somewhere.

If a government is using independent courts to gain access to your personal information, that is good privacy.

 

[hans1972]

If they start end to end ecrypting data using user provided keys then they can tell DOJ they don't have unencrypted data to provide.

What you are talking about here is secrecy. Privacy isn't only about keeping thing secrets and certainly not from the government.

 

[hans1972]

what happens if I use VPN? Which 'encryption' happens first? Will the data get encrypted first and then it goes to the VPN server or it goes straight to VPN server and I lose on these private relay etc.?
Ideally, I would love to get data encrypted before it goes to VPN so that way even the VPN can't know.

Anyone knows, please?

VPN doesn't change anything. An application will encrypt or not encrypt independent of the use of VPN.

So if you hare using HTTPS and VPN it is encrypted twice. The browser encrypts the HTTP data before it leaves the device, it is then encrypted again by the VPN on the device. When the VPN provider receives the date they can decrypt the VPN transmission and they will see your encrypted HTTP data which they can't decrypt.

 

[I7guy]

Normal users don't know Apple can decrypt their cloud data while Apple is saying they "protect your privacy".

Your assuming “normal” users know their backups are encrypted in the first place. Apples’ privacy stance was never about keeping data from lawful government requests.

 

[tongxinshe]

Please encrypt icloud backups and iMessage from end to end !
While your phone content can be accessed without your will, the privacy perception is just an illusion

NSA doesn’t allow that.

 

[Freida]

So basically, if I use safari on iOS 15 and I also have VPN then the data is encrypted in safari before it goes out the app. It then hits the VPN on my phone and gets encrypted there and only then it goes to VPN servers and then further.
So technically, if the VPN provider decides to be a bad actor then it wouldn't matter as safari already encrypted the data, correct?

VPN doesn't change anything. An application will encrypt or not encrypt independent of the use of VPN.

So if you hare using HTTPS and VPN it is encrypted twice. The browser encrypts the HTTP data before it leaves the device, it is then encrypted again by the VPN on the device. When the VPN provider receives the date they can decrypt the VPN transmission and they will see your encrypted HTTP data which they can't decrypt.

 

[tongxinshe]

The iCloud needs to be like Sync.com Nobody but you has access. If you lose your password and don't have email reset ability, which one shouldn't use to begin with, your data is gone forever. All sync can do is delete the data and account and allow you to create a new account.

Ever since Apple rejected FBI’s request to create a new backdoor OS, NSA has been watching Apple very closely and forbidden Apple to tightening further on anything it didn’t, include this “encrypted iCloud backup” feature.

 

[Mr.Back]

iCloud backups for your phone or iPad are encrypted in the cloud. The problem is Apple has the key for those backups and can unlock them when they have to. If you want peace of mind, create a Cryptomator folder in iCloud, and move your backups to that folder. Apple won't be able to access anything in that folder much less see file names etc. When you want to use the backup, you would have to download it to your Mac and decrypt.

As to iMessage, turn off messages in the cloud. Apple also holds the access key for your messages with the feature enabled.

Edited to add: Thumbs down all you want, Sinoka. What I said is true. If you want to show I am wrong, have at it.

Maybe I´m missing something, but I thought that you cant move iCloud backup. May I ask how can I do it?

 

[DeepIn2U]

I love this new mail privacy function

Sundar Pichai and Mark Elliot Zuckerberg, your turn now

your move. Lol.
end of line, Dillinger.

Please encrypt icloud backups and iMessage from end to end !
While your phone content can be accessed without your will, the privacy perception is just an illusion

iCloud back is are encrypted from iTunes or finder. iCloud is not encrypted. Big difference here. From device backup not certain that.

The more they talk about privacy the more I don't believe them. I mean if you look at activists, movements, etc. it always backfires on them. I mean, we've seen it a few times for example with Siri and how they days later added a button to disable sending voice recordings to Apple. And because Apple's software is not opensource nobody outside the company can check if Apple really is what they say they are. Anyway, I'd be cautious with your trust to this company.the end to end.iCloud backups for your phone or iPad are encrypted in the cloud. The problem is Apple has the key for those backups and can unlock them when they have to. If you want peace of mind, create a Cryptomator folder in iCloud, and move your backups to that folder. Apple won't be able to access anything in that folder much less see file names etc. When you want to use the backup, you would have to download it to your Mac and decrypt.

As to iMessage, turn off messages in the cloud. Apple also holds the access key for your messages with the feature enabled.

Edited to add: Thumbs down all you want, Sinoka. What I said is true. If you want to show I am wrong, have at

Activists are harry their movements backfire sucks but many of the hard core ones like Snowden or the young Philippines girl that was murdered during protest at gun point I think knew that. some people think beyond themselves and they act accordingly they are the real heroes and the real brave ones sadly the lifespans are very short and not always is their initiatives have an immediate impact of positive change sometimes it’s through their death that some contemplation fart and process begins for a positive change. That in and of itself should never be the reason not to push for positive change not ever.

 

[DeepIn2U]

Stop accepting money from Google and stop responding to subpoenas then I'll believe that Apple somehow defends your privacy.

First what we should be asking is directly to google to have any information crawled on the web to have user accessible deletion that way it can’t be called again and can’t be used again that first and foremost should be done then will talk to Apple about excepting a fee for using the search engine switching to a certain different search engine doesn’t change the fact that the dad is already out there and crawled in cash that is more important

 

[sinoka56]

Your assuming “normal” users know their backups are encrypted in the first place. Apples’ privacy stance was never about keeping data from lawful government requests.

Is this the "lawful" government requests you're talking about.

Trump Administration Subpoenaed Apple for Data on Two House Intelligence Committee Democrats

When investigating leaks of classified information during the early days of the Trump Administration, the United States Justice Department subpoenaed Apple for metadata from the accounts of at least two Democrats on the House Intelligence Committee, reports The New York Times. Apple was also...

forums.macrumors.com

 

[I7guy]

Is this the "lawful" government requests you're talking about.

Trump Administration Subpoenaed Apple for Data on Two House Intelligence Committee Democrats

When investigating leaks of classified information during the early days of the Trump Administration, the United States Justice Department subpoenaed Apple for metadata from the accounts of at least two Democrats on the House Intelligence Committee, reports The New York Times. Apple was also...

forums.macrumors.com

Yes, exactly. Apple stated (somewhere, although I can't produce a citation) that they are not out to protect user data from lawful government requests.

 

[szw-mapple fan]

what happens if I use VPN? Which 'encryption' happens first? Will the data get encrypted first and then it goes to the VPN server or it goes straight to VPN server and I lose on these private relay etc.?
Ideally, I would love to get data encrypted before it goes to VPN so that way even the VPN can't know.

Anyone knows, please?

VPNs can only mask your data while it's in transit. The connection is You → VPN → Website/Cloud → VPN → You. Your ISP can't see what websites you go to and websites can't see what ISP you are using from where. Your VPN will see both sides and they may or may not log that data. If you use application specific relay like tor, your VPN will only ba able to know that you are using tor without any other information. This article explains in more detail.

 

[MacBH928]

Why they address Europe when they have GDRP to protect them? They should address the USA where no laws protect them.

Ever since the App Store trials I’ve taken Tim Cook a lot less seriously. I believe he’s genuinely a decent person but I no longer buy his “we’re looking out for you!” approach, especially when it comes to privacy, which is often something you can't argue against. Apple was smart to focus on privacy but now they market it so much and use it as a defence for many actions that don't have the consumer's best interests at heart.

Why would a $2T for profit company CEO look for your best interest? He is hired and paid to look for the best interest of the board members and shareholders. Thats why they sell $700 computer wheels.

Apple is waving the privacy sword in the face Google because thats the one thing Apple can do and Google can't, because Apple makes money off software and hardware meanwhile Google sells nothing and gathers your data to sell for the highest bidder.