The United Kingdom has instructed Apple to allow them to access data in its cloud storage services via a backdoor. The order, which was reportedly issued in secret in January, demands that U.K. intelligence not only be able to demand information from a specific account: U.K. officials should be able to view all material that any Apple user anywhere in the world has uploaded to iCloud.
The Washington Post reports that its sources say that Apple would probably choose to stop offering encrypted storage in the U.K., rather than give in to U.K. demands. But since the U.K. is demanding access to data worldwide, that may not be enough to satisfy U.K. authorities.
The office of the U.K. Home Secretary presented Apple with a “technical capability notice,” demanding that Apple install the technical means for the U.K. to access the materials it desires. Under the U.K. Investigatory Powers Act of 2016, it is illegal even to acknowledge the existence of the demand. Although Apple can appeal (through a secret process), it would be required to comply during the appeal process.
The U.K. demands run afoul of Apple’s promises of data privacy. Through opting in to the Advanced Data Protection option, Apple users can ensure that their data backed up to the cloud cannot be viewed even by Apple: It should be entirely secure from search warrants demanding the data from Apple. The U.K. order would vitiate Advanced Data Protection.
