logoalt Hacker News

jcalvinowensyesterday at 6:40 PM2 repliesview on HN

> Apple's solution is iCloud Keychain which is E2E encrypted, so would not be revealed with a court order.

Nope. For this threat model, E2E is a complete joke when both E's are controlled by the third party. Apple could be compelled by the government to insert code in the client to upload your decrypted data to another endpoint they control, and you'd never know.

Replies

dcrazyyesterday at 7:08 PM

That was tested in the San Bernardino shooter case. Apple stood up and the FBI backed down.

show 1 reply
ezfeyesterday at 8:07 PM

Yeah and Microsoft could insert code to upload the bitlocker keys. What's your point? Even linux could do that if they were compelled to.

show 1 reply