EFF Calls on Apple to Let Users Encrypt iCloud Backups as Part of 'Fix It Already' Initiative

The Electronic Frontier Foundation (EFF), perhaps the most well-known digital rights non-profit, today launched a new "Fix It Already" campaign with the aim of getting technology companies to implement new privacy features in areas where privacy is lacking.

According to the EFF, the issues that it is demanding a fix for are "well-known privacy and security issues" that have "attainable fixes." From Apple, the EFF wants the company to implement user-encrypted iCloud backups that are inaccessible to the company and thus to law enforcement.

appleuserencryptedicloudbackups
iCloud content uploaded to Apple is encrypted at the location of the server and, with the proper legal requests, Apple can provide ‌iCloud‌ information that includes name, address, email, mail logs with date/time stamps, photos, Safari browsing history, iMessages, and more, with full details outlined by Apple on its privacy site. [PDF]

The EFF says that Apple should "let users protect themselves" and elect for "truly encrypted ‌iCloud‌ backups."

Apple has not encrypted ‌iCloud‌ backups because doing so would prevent Apple from being able to restore ‌iCloud‌ backups for users who have forgotten their passwords. As the EFF points out, though, Apple CEO Tim Cook has said in the past that Apple may move towards encrypted ‌iCloud‌ backups in the future. From an interview Cook did with German site Der Spiegel:

There our users have a key and we have one. We do this because some users lose or forget their key and then expect help from us to get their data back. It is difficult to estimate when we will change this practice. But I think that will be regulated in the future as with the devices. So we will not have a key for it in the future.

The EFF has demands for other technology companies in addition to Apple. Android, it says, should let users deny and revoke apps' internet permissions, while Twitter should end-to-end encrypt direct messages and Facebook should stop using phone numbers provided for account creation for targeted advertising.

WhatsApp should obtain user consent before adding users to groups, Slack should give free workspace administrators control over data retention, and Verizon should stop pre-installing spyware on some smartphones.

Tag: EFF

Popular Stories

Generic iOS 18 Feature Real Mock

iOS 18 Available Now With These 8 New Features For Your iPhone

Sunday September 15, 2024 10:09 am PDT by
Following over three months of beta testing, iOS 18 was finally widely released to the public on Monday, September 16. The update is available in the Settings app under General → Software Update on the iPhone XS and newer. Below, we have highlighted eight key new features included in iOS 18, and Apple shared a complete list of new features and changes last week. Note that Apple...
iOS 18 Public Beta Thumb 1

Here's When iOS 18 Rolls Out Today in Every Time Zone

Monday September 16, 2024 3:56 am PDT by
It's that time of year again. Apple is about to release iOS 18, which promises to bring a range of new features and improvements to iPhones worldwide. It's Apple's biggest software update of the year, and the company is expected to release it sometime today – Monday, September 16. Based on past releases, the update is likely to drop at around 10:00 a.m. Pacific Time/1:00 p.m. Eastern...
apple silicon mac lineup wwdc 2022 feature purple

M4 Macs, New iPad Mini, and iPad 11 Expected at Upcoming Apple Event

Sunday September 15, 2024 5:29 am PDT by
Apple will likely hold another event in October this year to announce new Macs and iPads. If so, it would be the fourth time in the last five years that Apple has held an event in October. Last year, Apple held a virtual event on Monday, October 30 to announce new MacBook Pro and iMac models with the M3 series of chips. In his Power On newsletter today, Bloomberg's Mark Gurman reiterated...
M4 Mac mini Black Ortho Cooler

Apple Leaks New Mac Mini With 5 USB-C Ports

Monday September 16, 2024 11:40 am PDT by
Apple has seemingly leaked the rumored next-generation Mac mini with five USB-C ports, according to a code change within Apple software that was discovered today by MacRumors contributor Aaron Perris. The code refers to an unreleased Mac mini model with an Apple silicon chip and five ports, which lines up with a previous report from Bloomberg's Mark Gurman that said the next Mac mini will be ...
16 pro

iPhone 16 Pro Demand Has Been Lower Than Expected, Analyst Says

Sunday September 15, 2024 3:58 pm PDT by
Apple analyst Ming-Chi Kuo today said demand for the iPhone 16 Pro and iPhone 16 Pro Max has been "lower than expected" since the devices became available to pre-order in the U.S. and dozens of other countries on Friday. Kuo said his data is based on a "supply chain survey" and shipping estimates listed on Apple's online store. Kuo estimated that sales of all four iPhone 16 models reached...
Beyond iPhone 13 Better Blue Face ID Single Camera Hole

10 Reasons to Wait for Next Year's iPhone 17

Friday September 13, 2024 2:40 am PDT by
Apple's iPhone development roadmap runs several years into the future and the company is continually working with suppliers on several successive iPhone models simultaneously, which is why we sometimes get rumored feature leaks so far ahead of launch. The iPhone 17 series is no different – already we have some idea of what to expect from Apple's 2025 smartphone lineup. If you plan to skip...

Top Rated Comments

cmChimera Avatar
73 months ago
I definitely agree with them.
Score: 34 Votes (Like | Disagree)
ersan191 Avatar
73 months ago
Just make it optional - people who know what they are doing can enable it and the regular people who are more likely to forget their passwords can leave it off.
Score: 22 Votes (Like | Disagree)
cmaier Avatar
73 months ago
We should be very careful what we ask for. While I value privacy, there are legitimate reasons for someone else to have the key to our files. For example, should something happen to your spouse or parent (stroke, severe accident, etc), all their info would permanently be locked out, including all their photos. We live in an age where the photos of all our loved ones reside on our iPhones and iCloud. There must be a way to salvage them.
If i wanted my heirs to have access to my stuff after I die I would be sure to arrange for that. I don’t need apple to do my estate planning.
Score: 15 Votes (Like | Disagree)
Apple_Robert Avatar
73 months ago
Glad to see the EFF publicly pushing for this. Apple needs to take heed.

I want safety. I promise not to complain if I go senile and forget by password.
Score: 13 Votes (Like | Disagree)
Ldubrov Avatar
73 months ago
We should be very careful what we ask for. While I value privacy, there are legitimate reasons for someone else to have the key to our files. For example, should something happen to your spouse or parent (stroke, severe accident, etc), all their info would permanently be locked out, including all their photos. We live in an age where the photos of all our loved ones reside on our iPhones and iCloud. There must be a way to salvage them.
Score: 9 Votes (Like | Disagree)
zorinlynx Avatar
73 months ago
Why can't it be treated the same way as FileVault?

If you forget your FileVault password, you lose your data, period. Just make it ABSOLUTELY CLEAR to the user that they must not forget their password or they will lose their iCloud backup data. They could even make it a choice; I believe FileVault asks if you want to let Apple keep a copy of the recovery key.

I know Apple is really big on keeping users from shooting themselves in the foot, but for those of us who understand the risks, we should be allowed to secure our data further.
Score: 8 Votes (Like | Disagree)