It allows processing data without decrypting it, which is great in terms of preventing someone else from snooping on it, but doesn’t change that Apple is retaining the ability to analyze the data content, which is the actual issue here.
Comment on Apple opts everyone into having their Photos analyzed by AI
wyrmroot@programming.dev 2 weeks ago
Homomorphic encryption, which allows for analyzing secret data without a decryption step, is actually incredibly cool. It’s a shame the conversation will begin with the fact that they deployed the feature as on by default.
t3rmit3@beehaw.org 2 weeks ago
scrubbles@poptalk.scrubbles.tech 2 weeks ago
Reading between the lines, I guarantee they’re doing the same thing for CSAM protection. I think sex offenders caused this to happen, I believe they found out that they were using photos to host that horrid stuff, and apple can’t just ignore it, so I think we have them to thank
t3rmit3@beehaw.org 2 weeks ago
I would be interested to see what lines you read between, because “identifying landmarks and points of interest” doesn’t sound like anything capable of identifying CSAM. I think you’re giving a big corporation a bunch of credit there is no reason to suspect it is owed, for an excuse they never professed.
scrubbles@poptalk.scrubbles.tech 2 weeks ago
Apple killed it’s last version in August because it didn’t respect privacy. Where there’s object detection there’s csam detection. Which hey I think is good, and I wouldn’t expect an announcement about it. I just see how they did this, and this is exactly how I’d roll out a privacy focused csam detector if I was going to do it
From August 2023, they killed the non privacy focused one: wired.com/…/apple-csam-scanning-heat-initiative-l…
Redjard@lemmy.dbzer0.com 2 weeks ago
They did this exact thing for csam detection a while back, and were made to stop due to public outcry.
It might have been analyzed locally and before encryption then though, still however without consent of the user and sending problematic results to apple.It is very realistic that here they would make the device decrypt and check the description against a database and make it send the file and description off for reporting when a match is found.
teletext@reddthat.com 2 weeks ago
[deleted]wyrmroot@programming.dev 2 weeks ago
This is not the case, but I do still disagree with the “trust me bro” approach to a feature rollout that does send data your somewhere, encrypted or not.
p03locke@lemmy.dbzer0.com 2 weeks ago
readable only by the original owner
Right now it’s not. All encryption gets its back broken by security flaws and brute force mathematics.
t3rmit3@beehaw.org 2 weeks ago
For those interested, the reason it’s not the same as a backdoor is that the result of the computation done on HE data is itself still encrypted and readable only by the original owner. So you can effectively offload the work of a certain analysis to a server that you don’t actually trust with your keys.
Do iPhones have a BYOK system for people to supply their own keypairs? Or is their OS open-source so that people can see how the keys are being handled? Because if not, it just sounds like all it takes to break this is for Apple’s OS that it controls to ship the private keys that it generated up to its servers?
Revan343@lemmy.ca 2 weeks ago
Just say you don’t understand encryption
ClassifiedPancake@discuss.tchncs.de 2 weeks ago
And it’s right that this is the conversation because Apple needs to learn people want to be in control and these things need to be opt-in. They can build the most sophisticated fancy system to protect your privacy, if it’s sending your stuff to another server it needs to ask for permission full stop.
tempest@lemmy.ca 2 weeks ago
They (and every other tech company) have been doing this type of thing for nearly 20 years. You might see some whinging about it in some corners of the Internet, like here, but most people don’t know or don’t give a shit.
It sucks.