Apple abandons its plans for CSAM scanning, too.
Apple abandons its plans for CSAM scanning, too.
Actually, this has nothing to do with Apple's proposed CSAM
functionality, which would be done on-device rather than on Apple
servers as *all* of their competitors do. Apple's proposed CSAM scanning maintained user privacy in significant ways compared to the competition.
Apple spokesperson Shane Bauer told The Verge that though the CSAM
detection feature is no longer mentioned on its website, plans for CSAM detection have not changed since September, which means CSAM detection is still coming in the future.
On 12/7/2022 8:08 PM, NewsKrawler wrote:
<snip>
Apple spokesperson Shane Bauer told The Verge that though the CSAM
detection feature is no longer mentioned on its website, plans for CSAM
detection have not changed since September, which means CSAM detection is
still coming in the future.
The Wall Street Journal article implied that the whole CSAM proposal is
no longer being pursued:
"Apple now says it has stopped development of the system, following
criticism from privacy and security researchers who worried that the
software could be misused by governments or hackers to gain access to sensitive information on the phone.
Mr. Federighi said Apple’s focus related to protecting children has been
on areas such as communication and giving parents tools to protect
children in iMessage. “Child sexual abuse can be headed off before it occurs,” he said. “That’s where we’re putting our energy going forward.”"
On 2022-12-07, Jolly Roger <jollyroger@pobox.com> wrote:
Apple abandons its plans for CSAM scanning, too.
Actually, this has nothing to do with Apple's proposed CSAM
functionality, which would be done on-device rather than on Apple
servers as *all* of their competitors do. Apple's proposed CSAM
scanning maintained user privacy in significant ways compared to the
competition.
Apple spokesperson Shane Bauer told The Verge that though the CSAM
detection feature is no longer mentioned on its website, plans for
CSAM detection have not changed since September, which means CSAM
detection is still coming in the future.
Sorry, forgot the link: <https://www.wsj.com/articles/apple-plans-new-encryption-system-to-ward-off-hackers-and-protect-icloud-data-11670435635>.
At least you can admit you were wrong. Good on you.
In tandem with today's announcements, Apple confirmed something most of us already figured: It is no longer working on a controversial system that was intended to identify child sexual-abuse material on users' iPhones-the company changed course after a public privacy and security backlash.
On Dec 08, 2022, sms wrote
(in article<news:tmt211$t66i$1@dont-email.me>):
Sorry, forgot the link:
<https://www.wsj.com/articles/apple-plans-new-encryption-system-to-ward-off-hackers-and-protect-icloud-data-11670435635>.
That's behind a paywall for me but it macrumours recently picked up on it. https://www.macrumors.com/2022/12/08/fbi-privacy-groups-icloud-encryption/
This change in Apple policy means people's personal messages, documents,
and data will be secure from law enforcement, hackers, and Apple itself."
The group is now calling upon Apple to implement RCS messaging into iPhone,
a move the group says is a "non-negotiable next step."
Following its announcements, the EFF or Electronic Frontier Foundation, a group that has long-called for Apple to enable end-to-end encryption and
take more steps to safeguard user privacy, put out a statement applauding
the new feature and Apple's renewed commitment to privacy.
We applaud Apple for listening to experts, child advocates, and users who want to protect their most sensitive data. Encryption is one of the most important tools we have for maintaining privacy and security online. That's why we included the demand that Apple let users encrypt iCloud backups in
the Fix It Already campaign that we launched in 2019.
What does RCS have to do with privacy?
I didn't see anything from Apple that said they'd abandon CSAM scanning.
Did Apple say anywhere on the net that they have stopped working on CSAM?
This change in Apple policy means people's personal messages, documents,
and data will be secure from law enforcement, hackers, and Apple itself."
The group is now calling upon Apple to implement RCS messaging into iPhone, >> a move the group says is a "non-negotiable next step."
Unlikely to happen unless it's required by some government rule like
what happened with USB-C. The last thing Apple wants is a default cross-platform messaging platform. As long as WhatsApp, Signal, etc.,
require that the user install an app, iMessage will remain a big selling point for the iPhone.
Love the EFF! And kudos to Apple for both the end to end encryption and
the abandonment of CSAM scanning.
What does RCS have to do with privacy?
It's much more secure than SMS since it has end-to-end encryption,
I didn't see anything from Apple that said they'd abandon CSAM scanning. Did Apple say anywhere on the net that they have stopped working on CSAM?
They did not say it directly, in an effort to save face, but they
implied it.
On Dec 08, 2022, sms wrote
(in article<news:tmtdoe$u3ih$1@dont-email.me>):
This change in Apple policy means people's personal messages, documents, >>> and data will be secure from law enforcement, hackers, and Apple itself." >>> The group is now calling upon Apple to implement RCS messaging into iPhone, >>> a move the group says is a "non-negotiable next step."
Unlikely to happen unless it's required by some government rule like
what happened with USB-C. The last thing Apple wants is a default
cross-platform messaging platform. As long as WhatsApp, Signal, etc.,
require that the user install an app, iMessage will remain a big selling
point for the iPhone.
But why did Fight for the Future (a privacy-focused advocacy group) say RCS is a non-negotiable next step in privacy?
What does RCS have to do with privacy?
Love the EFF! And kudos to Apple for both the end to end encryption and
the abandonment of CSAM scanning.
I didn't see anything from Apple that said they'd abandon CSAM scanning.
Did Apple say anywhere on the net that they have stopped working on CSAM?
On 2022-12-08, Jolly Roger <jollyroger@pobox.com> wrote:
At least you can admit you were wrong. Good on you.
The confirmation from Apple I reported in response was from a year
ago.
without a clear cite from Apple, nobody can corroborate
On 12/8/2022 11:46 AM, RonTheGuy wrote:
What does RCS have to do with privacy?
It's much more secure than SMS
In article <tmthha$uc7n$1@dont-email.me>, sms
<scharf.steven@geemail.com> wrote:
What does RCS have to do with privacy?
It's much more secure than SMS since it has end-to-end encryption,
that is false.
<https://www.horisen.com/en/blog/why-rcs-isnt-killing-sms>
RCS currently has one major weakness: it is not end-to-end
encrypted. From the security point of view, this is a huge issue.
However, Google claims they are not keeping messages that went
through their servers. The moment the message has been delivered to
the end-user, it is deleted from the RCS backend service. The only
reason why the messages could be kept for some time is to be
delivered when the end-user goes online. Still, lack of encryption
means service providers could read messages, and in case of some
governmental inquiry, they could be provided for inspection.
The second hurdle to overcome is the fact the protocol needs to
be accepted by all operators. We have mentioned earlier that 76
operators have already rolled out the service. Having in mind there
are some 800 mobile phone operators worldwide, it is easy to
conclude this is a rather small percentage.
<https://www.androidauthority.com/rcs-google-3090142/>
In a word, RCS is like SMS, but better. Except that it isnt. Not
every operator has enabled it yet. Not all phones support it. Not
every implementation is the same especially in terms of encryption
since that bit is optional. And even if you download Google Messages
and use the now-supposedly worldwide Chat features there, youre
still at the mercy of Googles servers which can go down or become
buggy any time. Which they have done rather frequently.
google has added end-to-end encryption to *their* messages app,
originally for individual messages and just recently for group chats.
that means that there's a lock-in for the google messages app for there
to be an encrypted conversation. anyone not using the google messages
app (i.e., iphone users) will *not* be encrypted.
google would need to provide and support their implementation to others
for there to be cross-platform interoperability.
history has shown that they are unlikely to do that.
They did not say it directly, in an effort to save face, but they
I didn't see anything from Apple that said they'd abandon CSAM scanning. >>> Did Apple say anywhere on the net that they have stopped working on CSAM? >>
implied it.
they did say it directly, and it was not done to save face.
note that there is more than one aspect of their csam detection. it's important to understand what apple is actually doing and how it works
rather than spew the usual mindless propaganda.
https://arstechnica.com/gadgets/2022/12/apple-adds-end-to-end-encryption-to-icloud-device-backups-and-more/
Apple adds end-to-end encryption to iCloud backups & Apple
Apple abandons its plans for CSAM scanning, too. https://www.apple.com/newsroom/2022/12/apple-advances-user-security-with-powerful-new-data-protections/
Previously, 14 data categories within iCloud were protected. This new
feature brings that count to 23, including photos, notes, voice memos, reminders, Safari bookmarks, and iCloud backups of the contents of your devices. Not everything is encrypted in this way, though. Critically, calendar and mail are untouched here. Apple says they are not covered. US-based participants in the Apple Beta Software Program can start using Advanced Data Protection today, and it will roll out to more Americans by year's end. If you're outside the US, you'll have to wait until sometime in 2023, Apple says.
Apple also announced iCloud users may now use hardware security keys like YubiKeys. Both NFC keys and plug-in keys are supported.
Second, there's iMessage Contact Key Verification, which can alert "users
who face extraordinary digital threats," like journalists, if
state-sponsored actors are hijacking or spying on their conversations, in some cases.
In tandem with today's announcements, Apple confirmed something most of us already figured: It is no longer working on a controversial system that was intended to identify child sexual-abuse material on users' iPhones-the company changed course after a public privacy and security backlash.
Sysop: | Keyop |
---|---|
Location: | Huddersfield, West Yorkshire, UK |
Users: | 307 |
Nodes: | 16 (2 / 14) |
Uptime: | 46:03:34 |
Calls: | 6,910 |
Files: | 12,377 |
Messages: | 5,429,524 |