UK's demand for Apple backdoor may have been broader than previously thought
So, it seems the UK government's desire for a backdoor into Apple's iCloud was potentially more invasive than we initially thought. A recent legal filing by the UK's Investigatory Powers Tribunal (IPT) suggests that authorities were aiming for access to a wider range of data than previously understood.
According to the Financial Times, the UK's Home Office hasn't officially withdrawn its request for Apple to create this backdoor. This is despite claims from US Director of National Intelligence Tulsi Gabbard that the UK had agreed to drop the mandate. Is it just bureaucracy, or is something else going on? It's hard to say, but it's definitely raising some eyebrows.
Back in March, The Times reported that Apple challenged the UK government at the IPT after receiving a secret order from the Home Office to build a backdoor for iCloud data. Because of the secrecy surrounding the order, Apple isn't allowed to publicly discuss it. However, they acknowledged receiving the mandate when they disabled iCloud's Advanced Data Protection (ADP) feature in the UK back in February. I remember thinking at the time that this was a pretty strong hint that something was up!
Apple has stated its commitment to providing users with the highest level of security for their personal data, stating, "As we have said many times before, we have never built a backdoor or master key to any of our products or services and we never will." It's a bold claim, and it's reassuring to hear. However, the UK government hasn't confirmed or denied the existence of the order, making this a case of "assumed facts" for the IPT hearing.
The order apparently obligated Apple to "provide and maintain a capability to disclose categories of data stored within a cloud-based service." This implies that the government was seeking access to things like passwords and messages. And here's the kicker: The Times reports that the order wasn't limited to data protected by Apple's ADP, which suggests the authorities wanted broad access to Apple iCloud accounts. It's a bit like saying, "We want the keys to the kingdom," isn't it?
If this is true, it raises serious questions about privacy and government overreach. I understand the need for security, but there's a line, and this sounds like it might be crossing it. It'll be interesting to see how this all plays out.
Source: Engadget