Comment by btown
6 days ago
Per that link: I think there's an interesting question about whether a nefarious actor who's infiltrated a cloud provider with physical access to machines that are running signed operating systems, with signed binaries, with TDX remote attestation, and with hardware supply chain verification, has the ability to break the privacy guarantees of a tenant with Apple's sophistication.
Certainly, one could tamper with the hardware, but could one do it in a way that wouldn't get that machine immediately flagged, removed from the routing pool, and told to wipe its memory immediately, by a watchtower (perhaps even the routing layer itself) that runs in a separate secure Apple datacenter?
Those datacentres would be in the same position of trust as a VPN provider in that the data must be unencrypted at points in the process.
They could be making it very safe, and the things apple says they are doing would make it as safe as possible, but as a user there is no way of verifying the claims.
> as a user there is no way of verifying the claims
I think this sums up what it's like to be an Apple user pretty well. With their heavy proprietary and closed approach, all users can do is "trust" them.
Have you read the PCC whitepapers? Are you saying the user-facing verification methods in them are insufficient, or vulnerable, or just false?
The previous argument was wrong and imprecise, as it could be used against any modern technology, none of which can be fully understood by a user, in the sense that any vulnerability would be completely invisible.
It’s clear they have made a very intelligent approach to this system.
>nefarious actor who's infiltrated a cloud provider
Google is buying that compute from xAI aka Musk
Apple could simply be ordered to include a hardware backdoor, and legally be prevented from talking about it. Everything else in the architecture could work exactly the way they claim in the PCC paper.
Spoiler alert; Google is the nefarious actor.
I think the last thing Google wants to do is get on the bad side of their largest partners.
their largest partner is probably the US government.
2 replies →
Why bother with all that cloak and dagger stuff when they can just buy the data? You believe Apple and/or Google isn't selling it? I have some land in Florida I'd like to talk about.
Having worked at Apple, I will say I firmly believe they do not sell data. I worked in data science and we had the shittiest inference because we had essentially no access, even internally, to longitudinal or cross-app user data. Best we had was 15 minute rotating sessions for a single app. There are internal teams dedicated to deanonymizing data to try to narrow down users - if they can successfully do so, and relevant fields that lead to deanonymization get permanently purged from internal logging.
I can’t speak to the current architecture but Apple has shown a consistent willingness to sacrifice access to user data in the name of selling privacy instead at a premium price (you could argue precisely because no one of their competition have any meaningful posture on this). I do believe they are quite serious in their commitment to that, as they have found this strategy to be more valuable than the data itself.
But sending sensitive private audio recordings to the lowest bidder is par for the course?
https://www.bbc.com/news/technology-49502292
2 replies →
> Having worked at Apple, I will say I firmly believe they do not sell data.
Selling data is so shabby! Why sell when you can just give it away to letter-soup friends?
3 replies →
Apple's incentives don't align to sell private data as their whole thing is privacy. They do that they tank their business. If you have proof that they are doing it -- I'd love to see it. (*3rd party actors from an app re-selling data doesn't count)
Google is 100% doing that because thats their entire incentive for the business. They sell low cost software / subsidized hardware on the grounds that you pay with your sharing data. That's the implied cost.
Show me the incentives - I will show you the outcomes.
Apple/Google make less money if they sell the data because their ad product would no longer have an advantage. So no, I don't think they do that.