Comment by Krasnol
1 month ago
The obvious difference is that by sending your photos with Signal, you are doing it willingly. You let it encrypt and decrypt willingly. You decide who gets it.
Here, Apple does that for you.
1 month ago
The obvious difference is that by sending your photos with Signal, you are doing it willingly. You let it encrypt and decrypt willingly. You decide who gets it.
Here, Apple does that for you.
Your ISP, a bunch of routers and switches and the servers run by Signal can also see your encrypted photo. You don’t really get to decide who sees the encrypted photo. You do get to decide which photo you encrypt and send though.
All of those are parts of the network infrastructure. They neither "see" the photo, edit it or need it. They don't even know if it's a photo.
Everybody knows that there is a network infrastructure where your content flows through. You willingly accept that as a connected device user because it is necessary to be connected.
What Apple did is not necessary and users don't know about it.
I agree that this isn’t necessary and that Apple should have asked for consent from the user.
I do want to point out that Apple doesn’t get to see your photo. Homomorphic encryption is really cool in that way. Apple isn’t able to decrypt the photo and the results they produce are also encrypted. That’s the beauty of homomorphic encryption. I can send you an encrypted spreadsheet and you can compute the sum of a column for me. I’m the only one who can see the actual sum since you can only see the encrypted sum.
1 reply →