Accidental Tech Podcast512: Owned With a P
https://atp.fm/512
Major new iCloud security features, more App Store price tiers, updates on Mastodon and Blackbird, and the wonderful world of printers.
Clayton Andersen@atpfm RE Apple E2E Encryption: I am a little curious of how this works with previously encrypted data. @siracusa mentioned there not being some huge process that re-sncrypts things which got me wondering about implementation details. Is Apple just basically theowing away their copy of the key once you enroll? If so it seems they are relying fairly heavily on the assumption that key has never been copied / misused. Maybe this is perfectly a reasonable assumption?
John Siracusa@claytonandersen If you don’t trust Apple to do this right, then you probably shouldn’t trust Apple with any of your data. Trusting Apple to implement things correctly is unavoidable.
@siracusa yeah totally agree, I was more surprised that they trust themselves but I guess they must have pretty tight restrictions around those HSMs and what a person could so with one which makes sense.