Everything You Need to Know About Apple's New iCloud Encryption Feature

by

As you may have heard, Apple this week announced it's expanding end-to-end encryption to additional types of data stored in iCloud with a feature called Advanced Data Protection, including device backups, photos, messages, and more. With the new change, even more types of data stored in iCloud will be fully end-to-end encrypted, a higher level of encryption standard.

Apple advanced security Advanced Data Protection screen Feature Orange
To help MacRumors readers better understand what the new feature is, how it works, and more, we've created this short post answering some of the most-asked questions about Advanced Data Protection.

What does it do and why is it new?

Before Advanced Data Protection, Apple only encrypted certain types of user data in iCloud, such as passwords and health data. By encrypting data, only a trusted user device can access that information. Other information stored in iCloud, however, such as your photos, messages, and device backups, were not fully end-to-end encrypted meaning if Apple wanted to, it could access your information. With Advanced Data Protection, that all changes.

With Advanced Data Protection enabled for a specific iCloud account, the vast majority of data stored in the cloud will be end-to-end encrypted, meaning no one, not Apple, law enforcement, or governments can ever gain access to that information. Only a trusted device can decrypt that information.

What data will be fully end-to-end encrypted?

With Advanced Data Protection, users will have the following types of data end-to-end encrypted in iCloud alongside Health data and passwords.

  • Device Backup
  • Messages Backup
  • iCloud Drive
  • Photos
  • Reminders
  • Safari Bookmarks
  • Siri Shortcuts
  • Voice Memos
  • Wallet Passes

It's worth noting that iCloud Mail, Contacts, and Calendar will not be end-to-end encrypted as they all require the ability to connect to external sources, such as Gmail, Yahoo, etc.

Is it enabled by default, and if not, how do I enable it?

Advanced Data Protection will not be enabled by default for users. In a recent interview, Apple's senior vice president of software engineering Craig Federighi explained that Advanced Data Protection requires extra effort from the user to enable a recovery method. The extra process and responsibility that lies on the shoulders of users in case they forget their password or lose access to their account make it impractical to force every user to go through that process, Federighi explained.

Nonetheless, even if not enabled by default, it's still easy to enable. When the feature rolls out to all US users by the end of this month, depending on when you activated your device, you'll be able to go into Settings, iCloud, and Advanced Data Protection, enable it and follow the on-screen prompts.

Can I use it now?

Not yet. Advanced Data Protection will roll out to all US users by the end of this month, and Apple says it will launch globally in early 2023. Specific dates for a global rollout are unknown.

Is it free?

Yes, it's free. Advanced Data Protection is an additional layer of protection offered to anyone with an iCloud account, at no extra charge.

What has the reaction been?

As expected, the reaction from users has been positive. With Advanced Data Protection, user data will stay more secure and private. Privacy groups have also praised the decision by Apple, calling it a "victory for user privacy." On the flip side, governments don't seem especially thrilled about the new option given to users.

Popular Stories

iOS 26 on iPhone Feature

Here's When iOS 26 Rolls Out Today in Every Time Zone [Update: Out Now!]

Monday September 15, 2025 12:00 am PDT by
Update 10:06 a.m.: iOS 26 is rolling out now, though it may take a bit for all users to see it, so keep checking! Today's the day! Apple is about to release iOS 26, which will deliver the biggest redesign since iOS 7 and bring a range of new features and improvements to iPhones worldwide. It's Apple's biggest software update of the year, and Apple announced at last week's iPhone event that...
Read Full Article95 comments
iOS 26 Battery Glass Feature

Apple Says Installing iOS 26 Might Impact Battery Life

Monday September 15, 2025 10:56 am PDT by
In the iOS 26 release notes, Apple is warning iPhone users that installing the new software might have a temporary impact on battery life, which is normal. A new support document explains that major iOS updates require background setup like indexing data and files for search, downloading new assets, and updating apps. Further, Apple says that new features could require more resources,...
Read Full Article120 comments
Tim Cook Rainbow

Apple Reportedly Plans to Launch These 10 Products in 'Coming Months'

Sunday September 14, 2025 8:45 am PDT by
Apple's annual September event is now in the rearview mirror, with the iPhone 17, iPhone 17 Pro, iPhone 17 Pro Max, iPhone Air, Apple Watch Series 11, Apple Watch Ultra 3, Apple Watch SE 3, and AirPods Pro 3 set to launch this Friday, September 19. As always, there is more to come. In his Power On newsletter today, Bloomberg's Mark Gurman said Apple plans to release many products in the...
Read Full Article83 comments
AirPods Pro Firmware Feature

AirPods Pro 2 and AirPods 4 Get iOS 26 Features With New Firmware Update

Monday September 15, 2025 10:50 am PDT by
Apple today released updated firmware for the AirPods Pro 2 and the AirPods 4, introducing support for the new AirPods features that are included in iOS 26, iPadOS 26, and macOS Tahoe. The firmware has a build number of 8A356, and it replaces the current 7E93 firmware. With Apple's new software updates, the AirPods Pro 2 and the AirPods 4 support better audio quality for phone calls and...
Read Full Article67 comments
iphone 17 lineup

iPhone 17 Models Launch on September 19 With These New Features

Friday September 12, 2025 7:58 am PDT by
Apple will launch its new iPhone 17 lineup and ultra-thin iPhone Air in stores on Friday, September 19, and the company has already shown off the new devices at its fall event, which ran with the the tagline "Awe dropping." The iPhone 17 series brings a host of new features and enhancements. Here's a rundown of the biggest upgrades and changes: iPhone 17 Display Changes The iPhone...
Read Full Article17 comments
iOS 26 Feature

iOS 26 Available Now With These 8 New Features

Monday September 15, 2025 5:45 am PDT by
Following three months of beta testing, iOS 26 was released today, September 15. The update is compatible with the iPhone 11 series and newer, and it is available to install via the Settings app, under General → Software Update. Below, we have highlighted eight new features included in iOS 26. Even more new features and changes are outlined in Apple's release notes for the update. Some of ...
Read Full Article145 comments
iPhone 17 Pro Air Boxes

iPhone Air and iPhone 17 Pro Boxes Revealed

Sunday September 14, 2025 1:36 pm PDT by
T-Mobile President Jon Freier today shared real-world photos of Apple's boxes for the iPhone Air, iPhone 17 Pro, and iPhone 17 models, which launch on Friday. Image Credit: Jon Freier Apple has typically included iPhone box renders in its product environmental reports, but it did not do so for the latest models. However, Apple's iPhone Upgrade Program page does offer some images of the boxes, ...
Read Full Article74 comments

Top Rated Comments

zorinlynx Avatar
zorinlynx
36 months ago
Generally when the people like something and governments are upset about it, it's a good thing. :)
Score: 35 Votes (Like | Disagree)
poorcody Avatar
poorcody
36 months ago
I for one would like to store information in Notes that I would not want a hacker to ever access, so this is a very positive development for me.
Score: 14 Votes (Like | Disagree)
DEMinSoCAL Avatar
DEMinSoCAL
36 months ago

Apple is waiting for the FBI to ramp up their servers for the Apple<->FBI APIs. Apple never said the government could not access the keys.
Yesterday's article ('https://www.macrumors.com/2022/12/07/apple-advanced-data-protection/') says that "Not even Apple has access to the encryption keys".
Score: 9 Votes (Like | Disagree)
centauratlas Avatar
centauratlas
36 months ago

What about Notes? Are Notes not included in the advanced protection?
Notes are supposed to be included.

"

* Advanced Data Protection for iCloud ('https://support.apple.com/en-us/HT202303#advanced') is an optional setting that offers our highest level of cloud data security. If you choose to enable Advanced Data Protection, your trusted devices retain sole access to the encryption keys for the majority of your iCloud data, thereby protecting it using end-to-end encryption. Additional data protected includes iCloud Backup, Photos, Notes, and more.

."
https://support.apple.com/en-us/HT202303
Score: 8 Votes (Like | Disagree)
centauratlas Avatar
centauratlas
36 months ago

Which is a lie because in the security document iCould Security Overview ('https://support.apple.com/en-us/HT202303') it says
"You can turn off Advanced Data Protection at any time. Your device will securely upload the required encryption keys to Apple servers, and your account will once again use standard data protection."
Maybe it should say, "Not even Apple has access to the encryption keys unless you tell your phone to give them to Apple by turning ADP off".
Score: 8 Votes (Like | Disagree)
centauratlas Avatar
centauratlas
36 months ago

How so, the keys are sent to Apple so yes they do have access to them. The code exists in the device, the process exists in the device and at Apple, only the claim that it only happens when the user does something. How do you know that there are not other ways to make this happen. Or how do you know that there is not other code that sends the keys directly to the government when requested. No one knows, this is why proprietary security is dangerous.
The keys have to exist on any device as part of the process of encryption and decryption as I am sure you know.

You are right though, there is no guarantee that they are not being uploaded in the background. Opening sourcing the code is one option. Having people monitor the network is another option to see what is going on. Of course if they aren't targeting you right then, you never know what could be sent when.

Of course, one doesn't know if TSMC has inserted a back door into the chipsets without Apple's knowledge at the behest of <name the adversary: CCP, CIA, FBI, MVD etc> or via bribe to employee(s). Or if Motorola etc has in the network chips. Or if the display manufacturer's processor can detect the word "key" on the screen and then send via some backdoor a screenshot.

There are a ton of attack vectors, whether to trust Apple here is a personal choice.

It is certainly better than before. :)
Score: 7 Votes (Like | Disagree)
Read All Comments