Correct, all your data on apple's services are encrypted such that apple can't a... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

olliej on June 7, 2019 | parent | context | favorite | on: Sign In with Apple [video]

Correct, all your data on apple's services are encrypted such that apple can't access them. The final fallback for account recovery is the "iCloud key vault" which is covered in documentation they published. Those are essentially HSMs gated by your account password and passcode, and a counter that triggers recovery key erasure.

I think the primary security white paper describes exactly how it works, but essentially there's a set of shared symmetric keys that are encrypted to public keys for each of your devices. Outside of the key vault path, the way a new device gets access to those keys is one of your other 2fa devices encrypt a decryption key to the new device when you approve it. The basic result is that there is no point in which the key material is transmitted unencrypted off a device.

aboodman on June 7, 2019 | [–]

I mean, Apple can push a software update that changes how this works. But what you describe is still a lot better than nothing.

saagarjha on June 7, 2019 | [–]

> all your data on apple's services are encrypted such that apple can't access them

This is only true for certain services.

Consider applying for YC's Fall 2025 batch! Applications are open till Aug 4
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact