Comment by whatgoodisaroad
4 years ago
It’s my understanding that the keys used in that “end-to-end” encryption are also under the control of the operator [1], so from a privacy perspective it is the same as handing over that data in plaintext.
[1] https://www.nytimes.com/2021/05/17/technology/apple-china-ce...
It’s an incorrect reading of the article. The HSMs in the data center are operated by the Chinese company so any CloudKit data escrowed by Apple could be accessed, but end to end encryption keys are synced through iCloud Keychain which uses a different protocol with device secrets.
Do you have any sources for that? I ask because the article I linked specifically states that Apple was forced to discard the entire encryption system it uses elsewhere. It’s also hard to understand why a government would insist on this sort of data custody without the benefit of plaintext access.
The key generation routine for iCloud Keychain is shipped in iOS and tangled with your device passcode. Chinese iPhones have the same iOS builds as iPhones everywhere, so if some backdoor code was present to have them generate iCloud Keychain keys differently, someone would have found it.
Here’s what I think the article is trying to describe:
1. It is known that Apple houses Chinese iCloud user data in Chinese servers. Apple has said so: https://www.cnet.com/tech/services-and-software/apple-ceo-ti...
2. China refuses to support Thales’s HSMs, so Apple had to build their own, presumably based on the secure element: https://twitter.com/matthew_d_green/status/13943950780100526...
I think #2 is what the article characterizes as “discarding entire encryption system.” However, the encryption of iCloud Keychain isn’t dependent on HSMs in the same way the rest of iCloud data is.
As a result, E2E encrypted iCloud data for Chinese users is probably still safe in China. Given physical access and non-standard HSMs, non E2E encrypted data in iCloud probably is not.
It will be very interesting to track the consequences if and when iCloud moves more data into E2E encryption, since the majority of synced data is not: https://support.apple.com/en-us/HT202303
Apple put a lot of money to design that HSM to lock themselves out. Chinese can’t access iCloud Keychain as plaintext.
https://blog.cryptographyengineering.com/2016/08/13/is-apple...