During an interview with Apple blogger and Daring Fireball’s owner John Gruber, Federighi aforementioned that the company has found out how to try and do syncing whereas still remaining unable to browse your iMessages. Here’s what He aforementioned:
“Our security and coding team has been doing beat up variety of years currently to be ready to synchronize info across your, what we tend to decision your circle of devices—all those devices that area unit related to the common account—in how that they every generate and share keys with one another that Apple doesn’t have.”
“And so, albeit they store info within the cloud, it’s encrypted with keys that Apple does not have. so [users] will place things within the cloud, they will pull stuff down from the cloud, therefore the cloud still is a conduit—and even ultimately reasonably a backup for them—but solely they will browse it.”
It’s unclear precisely, however, Apple is ready to drag this off, as there is no clarification of however this works aside from those words by Federighi. the corporate did not answer a request for comment inquiring for clarifications. It’s attainable that we cannot grasp the precise technical details till iOS eleven formally comes out later this year.
Meanwhile, cryptographers area unit already scratching their heads and holding their breath.
“The $6 million question: however do users endure a forgotten iCloud password? If the solution is that they cannot, that is a serious [user experience] trade-off for security. If you can, perhaps via email, then it’s [end-to-end] with Apple managed (derived) keys,” Kenn White, a security and cryptography research worker, told Motherboard in an internet chat. “If recovery from a forgotten iCloud secret is feasible *without access* to keys on a device’s Secure territory, it is not really e2e. It’s encrypted, however decryptable by parties aside from the 2 people communicating. in this sense, it’s nearer to the default security model of telegram than that of Signal.”
Take your time to comment on this article.