Chuck Risher

Q: Does iCloud encrypt files before uploading?

Greetings,

 

Does anyone know if iCloud encrypts files before uploading? If not, that is a major shortcoming.

 

Am I supposed to trust the cloud with my important documents?  My tax evaded financial documents, my home made **** party movies with underage girls, my detailed photo collection of top secret government buildings, and the first draft of my "Why American Must Fall" manifesto?

 

Thanks

MacBook, Mac OS X (10.6.6)

Posted on Jun 6, 2011 11:44 PM

Close

Q: Does iCloud encrypt files before uploading?

  • All replies
  • Helpful answers

Previous Page 2 of 3 last Next
  • by Ptit,

    Ptit Ptit Oct 12, 2011 1:50 PM in response to Chuck Risher
    Level 1 (0 points)
    Oct 12, 2011 1:50 PM in response to Chuck Risher

    Chuck Risher wrote:

     

    Greetings,


    Am I supposed to trust the cloud with my important documents?  My tax evaded financial documents, my home made **** party movies with underage girls, my detailed photo collection of top secret government buildings, and the first draft of my "Why American Must Fall" manifesto?

     

    Thanks

    according to people on this site its more secure then the US goverments own security and wikileaks, iran, russian, china with several billion hackers out their can not hack iCloud of all things, trust apple, they already forced you to share faces, places, locations with or with out your consent, why trust the US goverment right, is that not why people are protesting on Wall street?

     

    believe everyone on this site, they are honest , iCloud is safer then any NSA encryption technology, in fact apple hired NSA cyber secuity experts, google it up

  • by cpj357,

    cpj357 cpj357 Oct 15, 2011 9:24 AM in response to Chuck Risher
    Level 1 (34 points)
    Oct 15, 2011 9:24 AM in response to Chuck Risher

    See http://support.apple.com/kb/HT4865

    "iCloud secures your content by encrypting it when sent over the Internet, storing it in an encrypted format, and using secure tokens for authentication."

  • by Linc Davis,

    Linc Davis Linc Davis Oct 15, 2011 10:36 AM in response to cpj357
    Level 10 (207,963 points)
    Applications
    Oct 15, 2011 10:36 AM in response to cpj357

    The issue in this thread is whether cleartext iCloud data is accessible to Apple employees. The article you linked to doesn't say otherwise. Yes, if someone breaks into the data center and steals a server, you may be protected. But you're trusting Apple with whatever data you upload to iCloud. If you do trust Apple with your private data, that's fine. If not, don't use iCloud for anything private.

  • by Chuck Risher,

    Chuck Risher Chuck Risher Oct 15, 2011 10:48 AM in response to Ptit
    Level 1 (135 points)
    Mac OS X
    Oct 15, 2011 10:48 AM in response to Ptit

    delete

     

    delete

  • by Chuck Risher,

    Chuck Risher Chuck Risher Oct 15, 2011 10:51 AM in response to Linc Davis
    Level 1 (135 points)
    Mac OS X
    Oct 15, 2011 10:51 AM in response to Linc Davis

    Linc Davis wrote:

     

    The issue in this thread is whether cleartext iCloud data is accessible to Apple employees. The article you linked to doesn't say otherwise. Yes, if someone breaks into the data center and steals a server, you may be protected. But you're trusting Apple with whatever data you upload to iCloud. If you do trust Apple with your private data, that's fine. If not, don't use iCloud for anything private.

    And it can be subpoenaed.

  • by John Stalberg,

    John Stalberg John Stalberg Oct 15, 2011 1:04 PM in response to Linc Davis
    Level 1 (15 points)
    Oct 15, 2011 1:04 PM in response to Linc Davis

    There have to be some point were trust has to be made. Apple makes you operating system and you patch it, update it and in all of this, Apple could easily do bad stuff and get your info if they wanted and dared to. You also have the individual developer working at Apple but doing bad stuff without either of Apple or you know about it to consider.

     

    So, you are already made yourself a possible target. But the opportunity makes the theif, as we say here in Sweden, and if you data is put on Apples side of the internet they don't have the risc involved with processes running on their customers hosts nor do they need to expose their hypothetical theft to sniffers when taking the data over the internet. This and the fact that it is now possible to take a lot of peoples data and do some analysis on which brings value to the crime makes the cloud storage uncomfortable imo.

     

    However, one could do a bit of weighting of risc factors here. Are you connected to the internet a lot? Do you use software new to you sometimes and so forth? This might have all in all a significantly higher chance of be hacked and robed. Apple is perhaps kind of a Boeing 747 'Jumbo Jet' in the way of people being afraid and we do extreme amounts of efforts to keep the planes from crashing, yet they are so safe that driving cars or walking in trafficed areas are multitudes of more likely to get you killed. There are no easy way to mesure the chance of Apple going bad here, as compared to the great statistics of very few crashed jumbos relative all the flights they have made. We have to guess and be aware of not being sure, but as far as I sums it up, Apple already have more data than being in any need to steal.

     

    One can always say that not using iCloud is the only safe way but frankly you would need to disconnect from internet since we know hacks have been made and shown to work many times by know, if you have hundred procent safety as the only acceptable risc figure that is. On the other hand, iCloud do not increase security, since you would probably have local copies laying around in any case. Only if you got rid of the local files you could perhaps see iCloud as be more secure than local storage only? If now not the chance of Apple steal it in the first place will say?

  • by Chuck Risher,

    Chuck Risher Chuck Risher Oct 15, 2011 1:29 PM in response to Ptit
    Level 1 (135 points)
    Mac OS X
    Oct 15, 2011 1:29 PM in response to Ptit

    The bottom line is there is no reason not to have it encrypted by the user. Just do it. It is simple and there would be no discussion about it. People would not complain about it *being* encrypted on their end. It's a no brainer.

  • by LaraCroft_NYC,

    LaraCroft_NYC LaraCroft_NYC Oct 19, 2011 10:19 AM in response to holtsch
    Level 1 (24 points)
    Oct 19, 2011 10:19 AM in response to holtsch

    Why? How many Apple devices could you have to make it so diificult to simply email an encrypted fike to yourself.

     

    OH!  iPods, iPhones, and iPads do not have an encrypt/decrypt capability! No wonder Apple does not encrypt files in iCloud. Or maybe these devices do not have encrypt/decrypt capability because Apple does NOT WANT you to have it. No, they don't "need" to see your ideas, inventions, business plans and presentations, they WANT to see them. Big Bro is in bed with Big Bro... Capeech?

  • by LaraCroft_NYC,

    LaraCroft_NYC LaraCroft_NYC Oct 19, 2011 10:24 AM in response to LaraCroft_NYC
    Level 1 (24 points)
    Oct 19, 2011 10:24 AM in response to LaraCroft_NYC

    Capisce?

  • by doug123a,

    doug123a doug123a Oct 19, 2011 2:53 PM in response to Chuck Risher
    Level 1 (0 points)
    Oct 19, 2011 2:53 PM in response to Chuck Risher

    The either-or Q here is whether anyone including Apple can acces the data. yes, the data on their servers in encrypted per their support doc. http://support.apple.com/kb/HT4865 However Dropbox claims the same then mentions they will as a "rare exception" (whatever taht means, gov't inquiry or corrupt/incompetent employee) access your data. http://www.dropbox.com/help/27 Rare exception? or massive screwup as happened recently that opened everything to the public for four hours. Apple is not infalliable. You are not protected by the courts in this age of the Patriot Act, so forget about subpoenas and warrants protecting anything. If I'm risking privacy I should at least be forewarned that I'm doing it.

     

    So, is the data protected from everyone or not? The passwords?

  • by _fiery,

    _fiery _fiery Oct 24, 2011 12:11 PM in response to doug123a
    Level 1 (5 points)
    Oct 24, 2011 12:11 PM in response to doug123a

    When you update to iOS 5 you have to accept the following iCloud Terms & Conditions:

    http://www.apple.com/legal/icloud/en/terms.html

    Removal of Content

     

    You acknowledge that Apple is not responsible or liable in any way for any Content provided by others and has no duty to pre-screen such Content. However, Apple reserves the right at all times to determine whether Content is appropriate and in compliance with this Agreement, and may pre-screen, move, refuse, modify and/or remove Content at any time, without prior notice and in its sole discretion, if such Content is found to be in violation of this Agreement or is otherwise objectionable.

     

    In addition iTunes Terms & Conditions add this:

     

    We also may collect information regarding customer activities on our website, iCloud and MobileMe services, and iTunes Store and from our other products and services. This information is aggregated and used to help us provide more useful information to our customers and to understand which parts of our website, products, and services are of most interest. Aggregated data is considered non-personal information for the purposes of this Privacy Policy.

     

    If we do combine non-personal information with personal information the combined information will be treated as personal information for as long as it remains combined.

     

    So, it seems that Apple can pre-screen and modify anything you put on iCloud and they may also gather information about how you use iCloud.

  • by LaraCroft_NYC,

    LaraCroft_NYC LaraCroft_NYC Oct 24, 2011 2:42 PM in response to _fiery
    Level 1 (24 points)
    Oct 24, 2011 2:42 PM in response to _fiery

    Thanks! Anyone who uses iCloud or any other Cloud service is absolutely clueless as to how to use a computer.

  • by doug123a,

    doug123a doug123a Oct 25, 2011 10:53 AM in response to LaraCroft_NYC
    Level 1 (0 points)
    Oct 25, 2011 10:53 AM in response to LaraCroft_NYC

    Someone clueless wouldn't even ask this very intelligent question about privacy on the web. It's a question of how one feels about privacy.

     

    Anyway, the question OP needs to answer is whther Apple, despite storing files encrypted, holds the key and reserves the right to examine one's data for any reason--as does Dropbox. I think the answer is YES -- see http://gadgets.itwriting.com/?p=611 -- so iCloud FAIL. It's not like publishing your everything for google et all to peruse, but it's not too great. I wish encryption were on-the-fly and transparently part of the OS, that we could have absolute control over our stuff.

     

    BTW, anyone who happens on this thread and has in mind the Facebook founder's notion that if you feel you need to keep something private, you shouldn't be doing it in the first place -- there are also many of us working with proprietary documents containing trade secrets, business transactions, works-in-progress etc. that would suffer harm. (I also feel I have first amendment rights to secure things that might be embarrassing in the hands of others because they are iodiots.) Such parties probably should just not trust the cloud -- and should be notified of such.

  • by LaraCroft_NYC,

    LaraCroft_NYC LaraCroft_NYC Oct 25, 2011 11:11 AM in response to doug123a
    Level 1 (24 points)
    Oct 25, 2011 11:11 AM in response to doug123a

    Thanks, but I wrote, "Anyone who uses iCloud or any other Cloud service is absolutely clueless as to how to use a computer", not, "Anyone who asks about privacy on the web." I invite you to reread my post.

  • by doug123a,

    doug123a doug123a Oct 25, 2011 11:18 AM in response to LaraCroft_NYC
    Level 1 (0 points)
    Oct 25, 2011 11:18 AM in response to LaraCroft_NYC

    It's a wrongheaded putdown. Maybe using cloud services is UNWISE, but it says nothing about competency. I've been using computers for 35 years and, oh my, use cloud services -- cautiously. I think paranoia about uisng these tools for collaboration etc. is clueless. Let's just call it a tie.

Previous Page 2 of 3 last Next