Confidential advocates that a change in an iPhone security facility in the United Kingdom, and the fight between Apple And the UK government can have ripple effects worldwide.
Earlier this year, the UK demanded, under the Investigation Powers Act, That apple makes a back door To allow the government to access encrypted data on people’s phones. But instead of building a back door, Apple burnt the entire house in the UK market, Data Protection Equipment DrawingTo avoid compliance.
“As we have said many times before, we have never created a backdoor or master key for any of our products or services, and we will never,” Apple said in a statementSaying that it was “severely disappointed” from the government’s request.
As a result, an estimated 35 million iPhone users in the UK do not have access to an alternative end-to-end encryption feature called advanced data protection, which ensures that only users can reach their personal data, such as photos and messages.
Apple is Regarding an appeal The UK’s investigation is demanding to reverse the tribunal order with the powers, and Calls have increased To make the hearing public.
Data and privacy experts are worried.
“I only have bad news, and I am difficult to say anything other than a disaster. The loss of end-to-end encryption for cloud storage is bad-it leaves users less safe and private-but global results give it a tip in a very poor field,” David Ruies said, online secrecy experts in malwarebights.
Ruiz said, “What is especially migration, for more than a decade, the European Union has made a justified disturbance about data transfer between our two countries.”
The thinking was that the data of citizens of the European Union could not be preserved properly when crossed in the US due to National Security Agency Monitoring Programs. The purpose of the business agreements is to exclude details, Ruiz said, pointing to a safe port agreement before being killed in 2015, and an agreement called the US-UK Privacy Shield has since been.
“With the order of the UK, I do not legalize what happens to the US-UK Privacy Shield,” he said.
Last time there was an order of this magnitude when Edward Snowden’s revelations were, when Mentor It was discovered that the FBI had asked Verizon for a call details for coming and outgoing calls in the United States.
A data security ‘earthquake’ is sending shocks worldwide
Ruiz is not alone in his concerns.
“This is a wake-up call for CISOS, which navigates the intersection of security, privacy and government inspection,” says Drya Aga, the Security Operations Manager of Huntress Labs.
Aga says that when the government wants access to data, the construction of such a back door will pose a systemic risk. OOONCE is offered a vulnerability, it is only a matter of time when actors inadvertently exploit it.
“If governments can access data, then it can be opposed to: Cyber ​​criminal, hostile nation-state and malicious internal formula,” Aga said, the absence of strong encryption in the icloud increases the risk of insider hazards, unauthorized government access and possible data violations.
Similar data privacy battles may come in the US and other countries.
Ruiz says that it can add a so -called intelligence alliance consisting of “five eyes” nations (Australia, New Zealand, Canada, USA and UK) to make an equal demand for Apple.
Javad Abed, an assistant professor at the information system at Johns Hopkins Kerry School of Business, said, “The global dominos of privacy have been faltering.” “This is a policy earthquake.”
Whether in the UK or globally, the ability to control its own encryption and data sovereignty is becoming a non-parasical column of personal protection, Aga said, and users need to identify that the UK’s step is a symptom of increasing stress between governments and personal security.
To begin, people should check the privacy settings on their phone.
Many consumers have old phones, and those who do not have auto updates can remember significant security updates, which can include Messaging apps that allow for end-for-end encryptionSettings on the transferred app may not migrate with a new phone.
“If users have enabled the end-to-end encryption for apps on your former phone, then it is also a good idea that the settings are also capable on the new phone,” said Aga.
The same advice applies to non-apple phone users. “Samsung is not immune, so Galaxy fans should be worried,” said Aga.
US privacy security and government monitoring
Abeed says that the US government has a long history of wrestling with tech companies on encryption and the FBI has often argued that encryption haemors are law enforcement.
“Some MPs may see the status of the UK as a playbook,” he said.
The success of the UK in this battle may be ready to carry out executive action or the application of existing laws to fulfill a uniform objective for the US, but Abed says that the US has strong -free speech protection and a fragmented legislative process that will make a back door requirement more difficult. “And the bipartisan backlash will be fierce,” he said, citing senators on both sides of the senators-Rand Paul (R-Ky) and Ron Widen (D-Or)-who have pushed back against weakening security.
Elle ferrell-kingsley, A UK -based futurist and tech experts who have helped prepare the AI ​​policy research for the UK Parliament, say that strong constitutional security and existing legal examples that favor encryption in the US, a comprehensive phone user is a solid early points for user safety firewall.
There is bilateral interest in regulating online platforms, especially when it comes to hair safety. “Online Security Act of UK is particularly notable, now it has an extraterial access.”
He said that similar proposals have been vigorously discussed in the US, such as the proposed earnings IT Act, which will pose liabilities for companies that offer encrypted messaging without access to law enforcement. This is specifically introduced to remove child safety concerns, but some civilian freedom groups say this is A license for government monitoring,
Ferreel-Kingsley says that if the UK regulatory body applies compliance, companies will need to decide whether to create a UK-specific version of their products, to withdraw services completely from the UK (as Apple has done with some characteristics or threatened to leave the UK completely, as the encrypted Message app is a threat).
While she thinks that there is no possibility of replication of action in America, the results will be important.
“If US lawmakers follow the UK example, it can give rise to a rollback of extended government monitoring and strong privacy security,” he said.
“In short, the loss of end-to-end encryption is bad, yes,” Ruiz said. “But the global influence of this demand has a very dangerous and silly ability.”
