Hacker Neue

Preferences
scarface_74 parent
In theory, E2EE is good until someone you are messaging turns on iCloud backup of messages you sent and now law enforcement can force Apple to give them your iCloud backup - with iMessage
acdha
Unless they enable E2EE there: https://support.apple.com/en-us/HT212520

There’s always a risk that someone you’re sending a message to has been compromised but most of us are never at risk from that, as opposed to things like dragnet data collection or server breaches. E2EE is solving the problems it’s designed to solve, so it’s not a problem that things out of scope are more complicated.

idle_zealot
Also solvable: encrypt messages (and everything else) in iCloud backups (by default and not as a hidden special mode with scary warnings).
dwaite
They are encrypted, but (by default) the key is escrowed for recovery by Apple support, which LE can request just as well as the account owner (or other parties with judge decree, such as surviving relatives)
kemayo
And this is, honestly, a pretty reasonable default. For the average person, the failure mode is "I lost my phone, and I can't remember my iCloud password", not "I really need the cops to not be able to get into my backup", and they'd be super pissed off if Apple couldn't get them their data back. Having good security be available, but not the default, and requiring you to acknowledge the risks is a sensible trade-off for the customer service problems it might cause.
kelnos
I kinda agree with you, but I think there's also a reasonable argument to be made around the idea that a user might be super pissed off that Apple made the default be not secure against state actors.

Also, how many people actually care all that much about their message history? I know I do (and I have 1GB of SMS/MMS/RCS message history dating back to 2010 that I back up to GDrive nightly), but it seems to me that most people don't care about their message history that much?

dwaite
The nice thing is that there is now an advertised set of features to protect against state actors in the form of Advanced Data Protection, Lockdown mode and (soon) iMessage Contact Key Verification.

These all have significant usability impacts; I think Apple still has the correct defaults.

Finally, my understanding is that recovery keys are escrowed in a HSM separate from cloud hosting, and releasing an escrowed key is an audited event. My concern is mostly about actors accessing my data or surveilling me without transparency, as that gives no chance for accountability.

kemayo
I'll grant that what people really care about is their backed up photos, and there's nothing stopping Apple from having separate security strategies there.

That said, I suspect that there's more people out there who're going to lose their text history with their dead parent and be distraught over that, than who're going to be actively upset that the state can subpoena their messages.

kaba0
As opposed to the same someone just going to the police and showing them your messaging? Or getting caught and forced to open it? Or being an idiot and sending a screenshot to it to Facebook?

The issue you describe is just not an attack vector that is in anyway relevant, if you can’t trust the other side, every hope is already lost.

Lio
This is just me but I’m less bothered by Big Brother than I am by little brother.

I don’t worry (very much) that law enforcement will read my messages but I do worry that advertisers, insurance cartels, spam marketeers, bookmakers or price gougers will.

porkbeer
more and more, both drink from the same tap.
inferiorhuman
So e2ee is good until there's a situation where it won't work and then it's no worse than the status quo? What's the problem?

This item has no comments currently.

Keyboard Shortcuts

Story Lists

j
Next story
k
Previous story
Shift+j
Last story
Shift+k
First story
o Enter
Go to story URL
c
Go to comments
u
Go to author

Navigation

Shift+t
Go to top stories
Shift+n
Go to new stories
Shift+b
Go to best stories
Shift+a
Go to Ask HN
Shift+s
Go to Show HN

Miscellaneous

?
Show this modal