Matthew GreenFeb 12, 2025
I wrote a bit more about the UK’s recent move to allegedly demand backdoors in Apple encryption. https://blog.cryptographyengineering.com/2025/02/12/u-k-asks-to-backdoor-icloud-backup-encryption/
U.K. asks to backdoor iCloud Backup encryption

I’m supposed to be finishing a wonky series on proof systems (here and here) and I promise I will do that this week. In the midst of this I’ve been a bit distracted by world events. Las…

A Few Thoughts on Cryptographic Engineering
Show threadaspraggFeb 12, 2025

@matthew_d_green

> your backups would be encrypted securely under your phone’s passcode — something you should remember because you have to type it in every day

Securely? But aren't phone passcodes only 4-6 digits long? And if someone has access to the encrypted data, won't they have unlimited attempts to decrypt it? Wouldn't that make a brute-force attack trivial?

Show threadidkrn
@aspragg for unlocking, you need the key that is also stored in the hardware. You may need that as well for the backups
Feb 13, 2025 at 1:19amWeb