Comment by cassianoleal
2 days ago
> A 'Personal Recovery Key' could be recorded in a police database.
That's about as secure as not having ADP at all, or worse. If that police database gets compromised, not only my data is accessible to the attackers, but I will be none the wiser about it.
An attacker would have to both compromise the police database AND Apple to retrieve the data.
The Key could even be split, say 3 ways. Apple holds 1 piece, the police hold another, and the Courts hold the third, all three would be needed to decrypt the data.
This is too far in to the weeds though.
It is not beyond humanities ability to have a system as secure as ADP while still providing a mechanism to access terrorists phones for example.