this post was submitted on 20 Jun 2024
358 points (98.6% liked)

Privacy

32015 readers
1105 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Related communities

Chat rooms

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
[–] ji17br@lemmy.ml 13 points 5 months ago (3 children)

Apple cannot sell your AirTag data, because they don’t know it. It’s all encrypted.

[–] olafurp@lemmy.world 16 points 5 months ago (1 children)

Sure, it's encrypted, but there might be a way for them to decrypt it.

[–] Telodzrum@lemmy.world 3 points 5 months ago

It lives in the same place as your other inaccessible data, which Apple has been unable to produce when served with warrants for iCloud data and the like.

[–] potustheplant@feddit.nl 10 points 5 months ago (1 children)
[–] delirious_owl@discuss.online 10 points 5 months ago (2 children)

They say the same thing about some of the other data that they encrypt, but then they store the encryption private keys on their servers.

Encryption doesn't mean they can't see the data. It means only the people with the private keys (and those who can crack the private keys or a device with the private keys) can see the data.

One must know if the data is encrypted both at rest and in transit. What type of encryption is used. Where the private key is stored. And what are the protections in-place where the key is stored

[–] ji17br@lemmy.ml 11 points 5 months ago (1 children)

They do outline all of that, explaining how it works. The private key pair and secret are never sent to Apple. And yes, it’s end-to-end encrypted of course.

https://help.apple.com/pdf/security/en_US/apple-platform-security-guide.pdf

Page 202 of you care to learn how it works.

[–] delirious_owl@discuss.online 6 points 5 months ago (1 children)

Is the source code public so we can verify the implementation matches the spec?

[–] Zeroc00l@sh.itjust.works 3 points 5 months ago

It's not open source if that's what you mean. If you think that stops people looking at code then I'll have some of what you're smoking please.

If you're genuinely interested in how the Find My system works Here's a good paper on it. The papers publishers even have an open source tool to connect to Apples Find My network which is neat.

[–] possiblylinux127@lemmy.zip 2 points 5 months ago

With proprietary software you have no way of knowing. Also avoid SaSS (service as a software substitute)