Apparently Apple can end-to-end encrypt your iCloud, but it’s opt in because they still want to profit off your data >_<
To enable this, go to Settings -> iCloud -> Advanced Data Protection
You need to have all the devices under your apple account to be fully updated, and you’ll need to remember a 28-key passphrase for recovery
I hate how big tech treats privacy as an afterthought. This should have been the default. But oh well. Spread the world people.
You must log in or register to comment.
Orrr it’s because a lot of people don’t care about E2EE and just want their files to be backed up. Can we stop demonizing every single IT company ever for anything they do?
No
If they’d make this the default a lot of leas tech-savvy people would regularly lose their data because regular account recovery mechanisms don’t work with E2EE enabled. The vast majority of people don’t even use password managers and yes, people forget their passwords and yes, the same thing happens with a 28-digit recovery phrase. No, many won’t remember where they put it when they wrote it down. Many won’t even understand what this phrase means, even when the setup process directly explains it to them.
But we can obviously also be all negative about why this isn’t enabled by default and make assumptions.
That seems like it’s their problem. Should have written that recovery phrase in multiple places. E2EE should be opt out for the normies who can’t remember their passwords let alone write down their recovery phrases in multiple places. Like, I bet my ass most of the people don’t even have a complex master password. It’s some band name with their date of birth appended at the end which barely reaches 16 characters probably with the lowest entropy possible for a 16 character password.
It’s a bit fascist to force people to do what you think is right, no?
It’s for the good of everyone. Is data privacy a bad thing?
Data privacy is a good thing, but user awareness is far more important. People are always the weakest link when it comes to privacy & security.
I’m glad more and more people are getting educated with all the resources that we have today and I like how Apple makes it easy to turn it on when users are educated enough. But they do need to be mindful of what they’re storing, the consequences (if they forgot they password), and what does E2EE protect them from.
Educate users and let them choose.
Easy, encrypt your data before uploading it.
Keeping your data from Malus is harder than expected
Proprietary end-to-end encryption is a joke. Where is that key stored? Who has access to the key? What guarantees do you have that Malus doesn’t copy your key to their cloud?
Remember when worldwide all macs were slow because one of their servers had an issue?
Using a proprietary system for security and or privacy is for the feels only.
Anti Commercial AI thingy
What guarantees do you have that Malus doesn’t copy your key to their cloud?
I remember when I used a Samsung Galaxy as by daily driver a couple years back. I enabled full disk encryption and thought okay great, now that’s done. I noticed a very small, brief popup on my screen that lasted a few seconds, and it was a notice that my key had been sent to Samsung servers. Apparently you have to disable that option that’s hurried deep in the settings somewhere no one would think to look, and change your password again. If I hadn’t caught that brief notification at the bottom of the screen (not the normal location for notifications), I’d never have known.
The encryption password is also a max of 15 characters.
Yep, you can’t trust it. Same as WhatsApp backups on Google Cloud. The key is uploaded to Google too. That’s why people can restore the backup on their new phone without manually backing up the private key somewhere. Of course that means Google has access to all their WhatsApp history.
Anti Commercial AI thingy
Inserted with a keystroke running this script on linux with X11
#!/usr/bin/env nix-shell #!nix-shell -i bash --packages xautomation xclip sleep 0.2 (echo '::: spoiler Anti Commercial AI thingy [CC BY-NC-SA 4.0](https://creativecommons.org/licenses/by-nc-sa/4.0/) Inserted with a keystroke running this script on linux with X11 ```bash' cat "$0" echo '``` :::') | xclip -selection clipboard xte "keydown Control_L" "key V" "keyup Control_L"
