*Yes, that really does mean that Apple can decrypt your messages.* I don’t think... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

alwillis on July 7, 2022 | parent | context | favorite | on: Apple previews Lockdown Mode

Yes, that really does mean that Apple can decrypt your messages.

I don’t think so:

    Apple doesn’t log the contents of
    messages or attachments, which are protected
    by end-to-end encryption so no one but
    the sender and receiver can access them.
    Apple can’t decrypt the data.

    When a user turns on iMessage on a device,
    the device generates encryption and signing
    pairs of keys for use with the service. For
    encryption, there is an encryption RSA
    1280-bit key as well as an encryption EC
    256-bit key on the NIST P-256 curve. For
    signatures, Elliptic Curve Digital Signature
    Algorithm (ECDSA) 256-bit signing keys are
    used. The private keys are saved in the
    device’s keychain and only available after
    first unlock. The public keys are sent to
    Apple Identity Service (IDS), where they are
    associated with the user’s phone number or
    email address, along with the device’s APNs
    address.

From iMessage Security Overview--https://support.apple.com/guide/security/imessage-security-o...

Tepix on July 7, 2022 [–]

But you can backup your keychain on iCloud

alwillis on July 8, 2022 | [–]

But the keychain is one-way encrypted and Apple doesn't have the key to decrypt it.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact