Apple Says iMessage Interception Would Require Re-Engineering Systems, Has No Interest in Doing So
Yesterday, researchers made a presentation at the Hack in the Box conference arguing that Apple's iMessage system could theoretically allow Apple or another party to intercept the encrypted messages. The concern stems in part from Apple's use of a private server for storing users' public keys used to encrypt messages, meaning that senders have no way of knowing whether a potentially false key has been inserted in order to intercept messages intended for a different recipient.
In a statement to AllThingsD, Apple once again denies that it can read iMessages, noting that it would require the service's systems to be re-engineered and that the company has no interest in doing so.
Apple says that QuarksLab’s theory is just that — a theory, and one that would require a rearchitecting of iMessage for it ever to be a threat in the real world.
“iMessage is not architected to allow Apple to read messages,” said Apple spokeswoman Trudy Muller said in a statement to AllThingsD. “The research discussed theoretical vulnerabilities that would require Apple to re-engineer the iMessage system to exploit it, and Apple has no plans or intentions to do so.”
Apple's statement does not actually refute the original claim, simply confirming that as the service is currently configured it is impossible for Apple to intercept iMessages. The researchers' argument rests on the observation that changes could be made to Apple's systems to allow for iMessages to be intercepted without users being aware of the changes.
The result is that Apple is arguing users should trust that the company has no interest in making such changes, and if users take Apple at its word, the researchers' concerns remain merely theoretical. But some users may remained concerned that Apple could be quietly compelled to make changes by government security agencies, compromising Apple's touted "secure end-to-end encryption" for iMessage.
Related Stories
YouTube is planning to stop supporting its YouTube app on the third-generation Apple TV models, where YouTube has long been available as a channel option.
A 9to5Mac reader received a message about the upcoming app discontinuation, which is set to take place in March.Starting early March, the YouTube app will no longer be available on Apple TV (3rd generation). You can still watch YouTube on...
The iPhone 13 will feature low earth orbit (LEO) satellite communication connectivity to allow users to make calls and send messages in areas without 4G or 5G coverage, according to the reliable analyst Ming-Chi Kuo.
In a note to investors, seen by MacRumors, Kuo explained that the iPhone 13 lineup will feature hardware that is able to connect to LEO satellites. If enabled with the relevant...
Google and the three major U.S. carriers, including Verizon, AT&T, and T-Mobile, will all support a new communications protocol on Android smartphones starting in 2022, a move that puts pressure on Apple to adopt a new cross-platform messaging standard and may present a challenge to iMessage.
Verizon recently announced that it is planning to adopt Messages by Google as its default messaging...
Apple recently dropped the $19.99 fee for OS X Lion and Mountain Lion, making the older Mac updates free to download, reports Macworld.
Apple has kept OS X 10.7 Lion and OS X 10.8 Mountain Lion available for customers who have machines limited to the older software, but until recently, Apple was charging $19.99 to get download codes for the updates.
As of last week, these updates no...
For this week's giveaway, we've teamed up with MAXOAK to offer MacRumors readers a chance to win a Bluetti portable power station and an accompanying solar panel. Bluetti makes a range of portable power station options that are useful for camping, emergencies, power outages, off-grid living, and similar situations.
The Bluetti EB70 is a solid middle of the road option that offers 716Wh and...
Apple has published a FAQ titled "Expanded Protections for Children" which aims to allay users' privacy concerns about the new CSAM detection in iCloud Photos and communication safety for Messages features that the company announced last week. "Since we announced these features, many stakeholders including privacy organizations and child safety organizations have expressed their support of...
See update at bottom of article Spotify this week confirmed that its plans to add AirPlay 2 support to its iOS app have been placed on indefinite hiatus.
In an online discussion forum post, a Spotify representative said the streaming music service had been working on supporting AirPlay 2, but the company has paused the efforts "for now" due to "audio driver compatibility issues." The...
We're just a few months away from when Apple is expected to reveal the 2021 iPhone, dubbed the "iPhone 13." In preparation for its launch, it has been pulling in shipments of different components needed to produce the new iPhones, according to a report from DigiTimes.
In years past, Apple released its latest iPhone lineup, alongside a new Apple Watch, during a September event at Apple Park....
Spotify has announced a new partnership with Delta that will see the streaming service take over the "audio" section of Delta's in-flight seatback entertainment, making select playlists and podcasts freely available to all passengers.
You are now free to roam about the cabin—and get the music and podcasts you love at 30,000 feet. Beginning today, we're taking off in a new partnership with...
The iPhone 12 and iPhone 12 Pro arrived in October 2020 in a range of color options, with entirely new hues available on both devices, as well as some popular classics. The 12 and 12 Pro have different color choices, so if you have your heart set on a particular shade, you might not be able to get your preferred model in that color.
iPhone 12 mini and iPhone 12
The iPhone 12 mini and iPhone...
Top Rated Comments
Personally, I don't care if an Apple employee knows that I'm iMessaging my wife that I'm on my way home from work.
Why this Apple-centric bashing?
Facebook employes can read your posts, Citibank employees can see your bank transactions, Google employees can know what all your searches are.
This is no less secure than anything else done on the internet.
There is always a simple retort to a statement like this from the "Nothing to hide" brigade.
Do you have curtains in your home?
At least it's not Google!
I think Apple truly does care about our security. Look at all the trouble Apple went to for storing Touch ID fingerprints in ARM's Secure Enclave. Do you think HTC does that with there new HTC ONE with fingerprint slide recognition? To act like AAPL does not make a real attempt to protect our information is wrong. Do you see ads in your Apple email? Meanwhile GOOG will whore out your information as fast as they can and throw ads constantly in your face (even more aggressively now, due to the lowering profit margins from ads).