undefined | Better HN

0 pointsrahkiin4y ago0 comments

This already happens server-side now so what you mention here does not actually change.

0 comments

4 comments · 1 top-level

eknkc4y ago· 3 in thread

Not on iCloud. They have all the content already encrypted on your phone. Can’t fingerprint after that. Them adding this as an on device process is due to that.

And the fact that Apple has been talking about privacy all this time (and rightly so) means their past mitigations makes this more painful. Any other vendor could just do it on the server, add a line to their Privacy Policy and nobody would know.

rahkiinOP4y ago

This is false. Up until now, iCloud photos are encrypted in transit and in store but can be decrypted with Apples own key. There is no e2ee.

Apple has been talking a lot about putting all ML and data handling on your own device so that the data does not need to leave your device without e2ee

eknkc4y ago

I guess you are correct, they are not e2e encrypted. So part of my reasoning does not hold up, they could do this on the server if they wanted.

That I’d prefer to be honest.

nojito4y ago

Apple does not scan iCloud for csam because they feel that blanket scanning of iCloud violates end user privacy.

That’s the whole reason for their research into differential privacy.

1 more reply

j / k navigate · click thread line to collapse