Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

I don't really understand how a backdoor doesn't already exist if Apple can reset passwords for encrypted data...


Apple has the encryption keys for data stored on iCloud servers. The FBI wants a backdoor into the phone itself.


I don't think Apple is in the key escrow business anymore; on OS X they had such an option, to show the user the DEK and optionally store it. I don't think the DEK or KEK are backed up at all in iCloud. If you forget your password, all options I see involve device erasure.


It's hard to find this information on Apple's website. According to https://theintercept.com/2014/09/22/apple-data/

> Apple encrypts your iCloud data in storage, but they encrypt it with their own key, not with your passcode key, which means that they are able to decrypt it to comply with government requests.

Not sure if things have changed since then.


iOS backups made by the iCloud service seem to be stored unencrypted on Apple’s servers.


It wouldn't add security anyway. In order to encrypt data, they first need to read it unencrypted. Thus, they can't advertise iCloud as "we can't see your pictures", because they can, in theory.


You must mean something else here. Data certainly may be encrypted twice. In that case it would need to be decrypted twice in order to be useful. Perhaps you meant to say that data must be "unencrypted" in order to perform some other operation, e.g. generating thumbnails.




Consider applying for YC's Fall 2026 batch! Applications are open till July 27.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: