The 'information' being gathered isn't being actioned. Remember we get told time and time again that terrorist atrocities were actually preventable but the authorities failed to act upon the information. You're suggesting we walk straight into a police state. Are we going to ban the import of books next? The source code could be imported… or should we have a 'Great Firewall of Great Britain' very much like China? Even theirs doesn't work properly.įranklin was reported as saying: those who sacrifice liberty for security deserve neither. It would severely damage our economy trying to ban the stuff. If we were to ban encrypted services/make encryption illegal who do you think would benefit? Only the criminals would then have security and law-abiding citizens would get pillaged.Įncryption software can be downloaded from other countries or encrypted products bought from abroad. Many readers of this blog will use encrypted services – are we all criminals? Being privacy conscious means maintaining your personal security. Video below.Ĭhris bulk surveillance doesn't protect the defence of the realm. The former NSA Director Michael Hayden is publicly backing companies who protect information using strong, unbreakable encryption. You could print it off and lock it up somewhere safe – that physical method would prevent it from being stolen by hackers. Obviously I wouldn't expect Apple to escrow it anywhere and a user should never save it in the cloud. Maybe an optional, very long recovery key (like the 48 digit BitLocker key), could be offered to enable a master reset in the case of a forgotten password. Then the users who are concerned about forgetting their passwords and losing their data can elect for the 'standard security' (but in doing so government bodies can also access your data) and privacy conscious individuals can choose the 'high security' mode on the understanding that if you forget your password it's game over. have a 'high security' mode and a 'standard security' mode – both with enforced 2SV. However, and I'm on the fence with this, I think it may be a good idea to offer users the choice – i.e. I would like to see Apple implement this as soon as possible and also allow users to confirm their data is encrypted. These services not only remember passwords for users, but many of them can also generate strong passwords automatically.Ī password manager could ultimately be the perfect tool to help iCloud users handle their own encryption key.įound this article interesting? Follow Graham Cluley on Twitter to read more of the exclusive content we post. I recommend that users consider creating an account with one of the leading password managers (examples include Dashlane, LastPass and 1Password). It is therefore important that iCloud users begin thinking about password security now. This might lead some users to create easy-to-remember passwords that by their nature could weaken the security of their iCloud accounts. There is admittedly some risk in that transition if users forget their passwords, Apple will have no way of restoring access to their accounts. The onus of data management will therefore shift to the users themselves. Without the encryption keys, Apple will have no way to access users’ encrypted iCloud data regardless of how much the U.S. With that in mind, Apple’s decision to hand over encryption key management to iCloud account holders will render many of these requests irrelevant. Department of Justice decides to drop this particular case, it is almost certain that the tech giant will face more and more requests to access customer data in the future. Just recently, a federal court granted the FBI’s request to postpone all court proceedings while it takes the time to investigate a method of unlocking the suspected terrorist’s iPhone that would not require Apple’s assistance.īut even if the U.S. Over the past few months, several well known figures in the tech field, including the CEO of Google, have supported Apple’s decision to not comply with the FBI’s demands that it help authorities unlock Farook’s iPhone. It is against this backdrop that we have seen the ongoing Apple-FBI controversy. Back in 2014, many account holders experienced a crisis of faith when a hacker allegedly leaked the nude pictures of several well known celebrities from their private iCloud accounts.Īlthough the breach may have been assisted by users falling for phishing messages, Apple vowed to explore ways to further enhance the security of its services and devices.
0 Comments
Leave a Reply. |