← Back to context

Comment by llm_nerd

8 months ago

It isn't really a precedent. Companies, even high-rolling American tech companies, have to abide by the laws and regulations of the countries that they operate in. I guess there is a question of whether this is a legal demand that they truly had to follow, or just a request, and whether they could fight it in court, but Apple seems to be hoping to adjudicate it in the court of public opinion (apparently the initial backdoor request was secret and it got leaked).

> abide by the laws and regulations of the countries that they operate in.

In this case, the UK is seeking to use local law to change what is allowable on an international basis.

That's a bit different than a nation controlling the law on their own soil.

  • That was Apple's interpretation : That to comply with what the UK requested they would have to have the same thing everywhere.

    But of course that is nonsense, and Apple could theoretically have a nation-specific backdoor (e.g. for accounts in a given country a separate sequestered decryption key is created and kept in escrow for court order).

    I mean, Apple "complied" by disabling ADP just in the UK. They undermined their own "worldwide" claim, as ADP still works everywhere else, and the UK has no access.

    • The keys are stored only in the Secure Enclave. Encryption and decryption are handled outside the standard CPU and OS. This is hardware-level protection, not just some flag on a cloud account to be flipped. The only way for Apple to break this system is to break it for everyone, since anything else would risk bleed over or insufficient compliance.

    • > They undermined their own "worldwide" claim, as ADP still works everywhere else, and the UK has no access.

      Disagree. There is a difference between ADP being unavailable in one country and it working differently in that country. Implementing a backdoor would mean changing the way ADP works.