UK Demand For a Back Door To Apple Data Threatens Americans, Lawmakers Say

Members of key congressional oversight committees wrote to the United States' new top intelligence official Thursday to warn that a British order demanding government access to Apple users' encrypted data imperils Americans. From a report: Ron Wyden, a Democrat on the Senate Intelligence Committee, and Andy Biggs, a Republican on the House Judiciary committee, wrote to just-sworn-in National Intelligence Director Tulsi Gabbard and asked her to demand the United Kingdom retract its order.

If the top U.S. ally does not back off, they said, Gabbard should consider limiting the deep intelligence sharing and cooperation on cybersecurity between the countries. The Post first reported the existence of the confidential British order last week. It directs Apple to create a back door into its Advanced Data Protection offering, which allows users to fully encrypt data from iPhones and Mac computers when putting it in Apple's iCloud storage. Apple cannot retrieve such content even when served with a court order, frustrating authorities looking for evidence of terrorism, child abuse and other serious crimes.

The order was issued under the Investigatory Powers Act, which allows the British Home Office to require technical cooperation from companies and forbids those companies from disclosing anything about the demands. It would apply globally, though the U.K. authorities would have to ask Apple for information stored by specific customers.

Apple PR Nightmare

[Vandil X]

Apple markets their devices for their "privacy" and security. If this is thwarted by the invention of a backdoor (or the public disclosure of an existing one), then it won't be long for nefarious actors to use this level of access beyond the scope of UK officials.

If Apple pulls out of the UK market, that's a significant blow to their financials, but perhaps it would be a smaller blow than losing worldwide confidence in their products.

aww poor wittwe Apple-sucking baby

[drinkypoo]

Did I hurt your feefees by pointing out that Apple is spying on you?

You know Apple is part of PRISM [theguardian.com] right? And that PRISM is part of what makes Five Eyes work? Apple is not just giving your data to the US, it's giving it to multiple countries.

Re:

[ZiggyZiggyZig]

UK being one of them, so I don't see the point of the UK's government request...

Re:

[drinkypoo]

UK being one of them, so I don't see the point of the UK's government request...

I think it's theater. But an alternative is that they want earlier access to information because they don't trust the US to keep up its end of the commitment to spy on their citizens and provide them with the information.

Re:

[gtall]

Go to a physics conference sometime and see all the MacBooks around. Gee, those physicists are certainly very, very stupid.

Re:

[Big Hairy Gorilla]

>Intelligence in one field does not translate to all fields.

I'll go one further: Intelligence in one field does not translate to any other fields.
I've puzzled over this for a long time. How can some people who seem so intelligent (in one field) be moronic in another.
I think the most egregrious example is how people use Microsoft, Apple, etc, completely trust them to keep them safe, while we now know without doubt they are the ones spying on you. There is literally no pushback. A little bit of hand wringi

Re: Apple PR Nightmare

[RazorSharp]

I love the irony of writing a post in the style of an imbecile that accuses anyone using a particular computer to be a moron.

Bravo! Oh, wait, you were not joking. . .

Re:

[bleedingobvious]

an imbecile that accuses anyone using a particular computer to be a moron.

Crapple's marketing is specifically aimed at morons, reframing their idiotic purchase as the actions of a "creative genius". Unsurprisingly this means most Crapple users are morons.

You sound like a Crapple fan. Kudos. You're a marketing sucker. No amount of technology will fix that. Ever.

Own it. No need to get angry about it.

Re:

[chiefcrash]

the amount of "smart people" I've seen become completely helpless if their desktop icons get reorganized is staggering...

And a when it happens to surgeons... a little scary

Re: Apple PR Nightmare

[drinkypoo]

I see you didn't understand what I wrote at all. I was referring to buying the argument.

Cost and Compatability

[Roger W Moore]

That certainly used to be the case but recently I've noticed that the number of macs has been steadily declining. If you look at laptops that students use it is far more marked with it going from well over 50% with a Macbook to now just a handful. Academics are more price sensitive: every dollar we spend on a laptop is a dollar not going to research.

In fact, I used to have a mac myself but when they failed to update the laptop for ~3 years and the Mac Pro for 10 years and then, the new ones lost the mags

Re:

[Zocalo]

Apple have already stated their intentions on this. Given the way the current system works (public & private keys) adding a backdoor is simply not possible, so they'd have to do a major refactoring of the code to use a different system to comply with the order. They're not prepared to do that for the UK, so the solution will be to simply remove the encryption from *ALL* UK user accounts, including all the politicians, members of the security services, and everyone else. The upside (if you can call it

Re:

[Powercntrl]

Given the way the current system works (public & private keys) adding a backdoor is simply not possible, so they'd have to do a major refactoring of the code to use a different system to comply with the order.

This is just Apple trying to dazzle lawmakers with technobabble. The reality is, Apple already knows how to turn your user password back into your encryption key (otherwise restoring an iCloud backup to a replacement device would not be possible), and simply storing a copy of your password on Apple's servers would be an adequate "backdoor". It'd be a PR nightmare for Apple for sure, but absolutely trivial to implement.

I'm really surprised on a "News for Nerds" site there's so many people repeating the ref

Apple should not be in control of the encryption

[rtkluttz]

Just like when the US was trying to pressure apple into giving up the keys to the kingdom for that terrorists phone. They did a mind job on the american people by somehow keeping people from asking the real question of "why is it possible for them to even give up this information". The owner of the device should be responsible for their own encryption. If you are "trusting" someone else to be in control of your encryption, then you may as well not be encrypted at all. Encryption plugins should be the paradi

Re:

[sinij]

The owner of the device should be responsible for their own encryption.

This should be at least an option. However, typical user is not capable of managing their keys and that means that recovery would not be possible. This in turn will create false perception among non-techies that encryption is dangerous for your data and will undermine the whole system. Either way, UK government wins by undermining user data encryption.

The situation with UK government has only one good solution - Apple tells them to go pound sand and Trump threatens punitive tariffs if they do anything ab

Re:

[AlexanderPatrakov]

This in turn will create false perception among non-techies that encryption is dangerous for your data and will undermine the whole system

Isn't it already the perception of DNSSEC among techies?

Re:

[mccalli]

That's already the case - you own the decryption key in iCloud, and if you lose it your data is gone. It's covered in their support document [apple.com], and also a warning comes up if you try to enable it

Re:

[sinij]

I am not sure what it takes to lose decryption key with the existing setup. You need to lose your phone, your apple account login, and configure iCloud to disable web access all together.

Re:

[Sloppy]

typical user is not capable of managing their keys and that means that recovery would not be possible. This in turn will create false perception among non-techies that encryption is dangerous for your data

False perception? It'll point out a real thing: when encryption is done right, nobody can access the data unless they have the key. So it's both a danger and a strength.

There's no reason to not point this out and let people learn from it.

If they think they can do things well, they have a chance at keeping

Re:

[MikeMo]

That's not what went down. The US asked Apple to make a special version of the OS [npr.org] that would not wipe the terrorist's phones after multiple failed attempts to log in.

Re:

[sabbede]

What, like a switch for "enable cloud encryption", or are you suggesting manually encrypting each file? The first is pretty standard for a hosting service, the latter seems like a pain in the rear.

Managed decline

[sinij]

For anyone interested in watching this unfold - UK is what managed decline looks like in practice. Your country gets poorer, your national identity is forgotten, your individual rights are eroded. The next step isn't trans-national cosmopolitan population but sectarian violence and fracturing of your country into multiple smaller states. On the current trajectory there won't be United Kingdom in 10 years, but there will be England, Wales, Scotland, etc. and they all will be much, much poorer and even less influential on the world stage.

Re:

[dfghjk]

Just like Putin plans for all western nations, including the US. In fact, everything you wrote could be applied to the US. Doesn't mean the predictions are true, it's more suggestive that you've either been convinced of Putin's propaganda or you work on behalf of his interests.

Re:

[nightflameauto]

For anyone interested in watching this unfold - UK is what managed decline looks like in practice. Your country gets poorer, your national identity is forgotten, your individual rights are eroded. The next step isn't trans-national cosmopolitan population but sectarian violence and fracturing of your country into multiple smaller states. On the current trajectory there won't be United Kingdom in 10 years, but there will be England, Wales, Scotland, etc. and they all will be much, much poorer and even less influential on the world stage.

Managed decline? Us folks across the pond are asking ya ta hold our beer, bud. We're gonna show ya how to accelerate that decline.

Re:

[AmiMoJo]

Some of the regions could be better off as independents. Scotland could get back into the EU, from which it would benefit greatly, for example.

The UK should have broken up long ago. It was only held together by the Empire and former glory, and then later by the EU doing its best to make sure that the regions were not neglected. Now that it's just English politics running everything, conditions for the other countries have deteriorated. There is a slight exception in Northern Ireland, but only because their

Scotland is bankrupt

[Bruce66423]

Its economy is only afloat because of what the English taxpayer gives it. If it was independent it would need to go to the IMF immediately.

https://www.ft.com/content/ff6... [ft.com]

It would inherit its share of the UK's national debt, denominated in a foreign currency - the pound.

It would not be eligible to join the Euro because its indebtness would be too great.

Re:

[AmiMoJo]

If Scotland did become independent then the currency would be a matter of negotiation. Chances are they would continue to use the pound for a while, which would make the rest of the UK somewhat reluctant to see their economy tank. There would probably be a transition period until they could adopt the Euro.

As for how much debt they would inherit, that's another thing to be negotiated. As a part of the EU though their economy would do fine, especially with all that renewable energy they have. Remember that th

Re:

[Viol8]

"The UK should have broken up long ago. It was only held together by the Empire and former glory"

I suggest you go learn some history. The United Kingdom came to pass in 1603, long before any British empire, when the SCOTTISH king James I was crowned king of england too. And Wales had been under english rule since the 12th century.

"Now that it's just English politics running everything"

Really? So the devolved governments do nothing and have no powers?

Stick to BS'ing about your own country, not ours which you

Re:

[pjt33]

I suggest you go learn some history. The United Kingdom came to pass in 1603, long before any British empire, when the SCOTTISH king James I was crowned king of england too.

Not so. The kingdoms of Scotland and England were ruled in personal union for a century before the United Kingdom came to pass in 1707 with the Act of Union under Queen Anne. It took almost another century before Ireland became part of the United Kingdom rather than being ruled in personal union.

Re:

[Viol8]

Fine, but the act of union simply formalised what had been the de facto situation for the previous 100 years under more or less absolute monarchs until the civil war. After that Cromwell created the - albeit short lived - commonwealth of england and scotland which pretty much demonstrates the point.

Re:

[ArchieBunker]

Great job brexit and you're also describing the USA.

Why is this modded up?

[Viol8]

The whole of europe is in managed decline pal. Check out the German and French economies at the moment which are in the toilet - the latter currently having a debt of 110% of GDP! As for southern europe , oh dear. The only country in the EU thats doing well is Poland ironically.

Re: Managed decline

[RazorSharp]

Technically, England, Wales, and Scotland are their own countries already.

Re:

[MachineShedFred]

Managed decline is preferable to unmitigated disaster, which is what we're headed for here on the left side of the Atlantic.

Re:

[sinij]

False choice. You don't have to chose between managed decline or catastrophic collapse. It is avoidable, but it does require returning to Western Values.

Re:

[MachineShedFred]

I never said those were the only two options in the entire set.

I inferred those are the only two options available to us without a political sea change, and we're still a good 23 months from that being a possibility.

Re: Managed decline

[Fons_de_spons]

Managed decline in the UK? If you are in the US, you may want to read that comment back in a decade or so. At least it is managed in the UK.

Re:

[sinij]

I expect US will be prosperous and continue to be the dominant military, economic, and cultural power in the world. However, the UK and EU will be greatly reduced, we will likely see EU economic refugees in US by 2035.

Excellent Idea

[Vlad_the_Inhaler]

I'm all for backdoors into software.

Best regards
Vlad

Typo in the description

[CEC-P]

"Apple cannot retrieve such content even when served with a court order, frustrating authorities looking for evidence of people saying bad things about the British Government."
There, I fixed it for you.

Reasonable chance of success

[shilly]

The action being proposed by the committee members is quite likely to work. The UK government is keen to build bridges with Washington right now, and has worked pretty hard at doing so. They'll be quite responsive to this kind of political pressure.

imperiling Americans is the US Govt's job

[dfghjk]

The real concern is that the American people learn that Apple grants access to the same backdoor built in for the US government.

National Security vs Private Sector Security

[BringsApples]

National Security vs Private Sector Security

To want one, but not the other is literally insane.

really ?

[Tom]

frustrating authorities looking for evidence of terrorism, child abuse and other serious crimes.

Because we all know that those are absolutely the only issues that they would ever dream of seing as a reason to sift through our personal information.

Also note that "looking for evidence" implies that the targets of these searches don't need to be guilty, only suspected.

I'm all for jailing terrorists and child molesters and throwing away the key. I also like my personal freedom to do innocent and legal things without the government poking around in it.

Reasonable suspicion

[Bruce66423]

'Also note that "looking for evidence" implies that the targets of these searches don't need to be guilty, only suspected.'

That's always the case with any search warrant. Nothing to see here.

Hmm

[vbdasc]

the Investigatory Powers Act, which ... and forbids those companies from disclosing anything about the demands.

Does this mean that Apple already violated the UK law?

Re:

[mrbester]

No, as that is referring to demands (not requests) against a particular third party. Because governments don't want those who hold data to tell the owners of that data that their affairs are being poked into otherwise they'd invoke pesky data protection things like the 4th Amendment, or similar in their country, and we can't have that.

Domestic threat

[ArchieBunker]

I'm more scared of a domestic threat from an unelected immigrant. https://www.the-independent.co... [the-independent.com]

Good thing he has "read only" access to my data. https://www.cbsnews.com/news/t... [cbsnews.com]

Re:Domestic threat

[sabbede]

You say that like the people who voted for Trump didn't know he and Musk were going to setup DOGE. They did. It was a major part of his platform. So, Trump was elected, Musk is working for him. The voters spoke.

Honestly, you might as well complain about how people didn't vote for a particular cabinet secretary. It is a spurious complaint that can only be based on an intentional misunderstanding of the democratic process. Utterly silly.

Re:

[ArchieBunker]

It's still going to be Biden's fault when Medicare and Medicaid are slashed. https://www.npr.org/2025/02/10... [npr.org]

Re:

[Zocalo]

There's knowing what someone claims they are going to do, and knowing how they are going to go about it.

There's a reason political campaigns are often very heavy on the "what" and very light on the "how", and it's that voters love to fill in the blanks in a way that works for them, if they even think that far given all the single-viewpoint information bubbles many of them now wrap themselves in rather than have to consider different opinions. A lot of people are going to get behind someone promising to

Holy hells the hypocrisy

[nightflameauto]

The United States government whines continuously about needing back doors into all encryption, then bitch when an ally wants the same? Can they even read their own playbook? Or are we so deep into the "gimme everything, you should get nothing" territory now that they no longer have a playbook?

America threatens world, says world

[ratbag]

There's going to be a flood of chickens coming home to roost with Presidents Elon and Trump (Mump? Trusk?) in the coming years.

Obviously this example is only tangentially related to the dastardly duo, but any benefit of the doubt will fall against America for the foreseeable.

I thought this was by US request all along

[unami]

Isn't it commom practice among the Five Eyes countries to have each extensively spy on the citizens of the others and then share that data to circumvent national rights?

Cutting off nose to spite face

[Bruce66423]

'If the top U.S. ally does not back off, they said, Gabbard should consider limiting the deep intelligence sharing and cooperation on cybersecurity between the countries.'

I thought you liked having a military base in the Chagos islands in the Indian Ocean, as well as various listening posts in the UK. There's a listening centre on the North Sea coast which the UK cut the US off from when there was a previous row; the US backed down.

If a back door exists...

[MpVpRb]

...bad guys will use it
There are only two options, full security or no security

Just give them the encrypted files.

[denny_deluxe]

Let Britain figure out how to break said encryption.

No besties anymore

[ukoda]

In more normal times the USA would not 'demand' the UK do something, they would 'request' it and probably get a favorable response. However now there is a very real chance that the USA will invade and take control of another country with the threats against Gaza, Greenland and Canada. This is would be a huge step up from the normal interference that the USA undertakes in other countries.

If the USA were to step over that line how would traditional USA allies respond? With invasion treats feeling more r