User profile for user: Frank9090
Frank9090 Author
User level: Level 1
5 points

are secure (locked) notes end to end encrypted when backed on iCloud

Apple says that Secure notes are encrypted by using a password that is required to view the note on iOS, MacOS, and the iCloud website. When you secure a note, a 16-byte key is formed from your password using PBKDF2 and SHA256. The note’s contents are encrypted using AES-GCM.


From the above I understand that this is end to end encryption though Apple doesn’t say so. Is it correct?


Does it mean that when the secure notes are backed on the iCloud Apple have no access to them since my own password is a part of the encryption key and Apple doesn’t not know it (cannot recover in case I forget it).


If we look at the iMessages for instance, they are end to end encrypted while on your device but once you opt to back them up to the iCloud then Apple posses the encryption key. But you never create your own password for iMessages. That’s why I thought the case is different than the secure notes and the secure notes are end to end encrypted even backed up on the iCloud. Am I right?

Posted on Jan 31, 2020 5:23 PM

Reply

Similar questions

2 replies
User profile for user: Rafael B.
Rafael B.
User level: Level 1
24 points

Feb 1, 2020 1:56 AM in response to Frank9090

As a user (and from observation how the feature is implemented) I would assume that locked notes are end-to-end encrypted. But according to Apple’s official documentation secure Notes are not end-to-end encrypted.


So either the documentation is wrong and didn’t take into account this rather new feature of Apple’s Notes.app or the implementation is similar to other Apple services where a government can get access, because Apple stores keys on its servers. Because we are talking security here, I would rather assume the latter.


According to Apple’s documentation (https://support.apple.com/en-us/HT202303) the following services are end-to-end encrypted:


  • Home data
  • Health data (requires iOS 12 or later) 
  • iCloud Keychain (includes all of your saved accounts and passwords)
  • Payment information
  • QuickType Keyboard learned vocabulary (requires iOS 11 or later)
  • Screen Time
  • Siri information
  • Wi-Fi passwords


Your messages from Messages.app are also end-to-end encrypted, but only if you have iCloud Backup turned off.

Reply

This thread has been closed by the system or the community team. You may vote for any posts you find helpful, or search the Community for additional answers.

are secure (locked) notes end to end encrypted when backed on iCloud

Welcome to Apple Support Community
A forum where Apple customers help each other with their products. Get started with your Apple Account.
Learn more Sign up