Unlocking the Secrets of Apple's Advanced Data Protection: A Deep Dive into Privacy and Security

Apple Advanced Data Protection, it's about time!

Apple's Advanced Data Protection (ADP) is an optional setting that offers Apple's highest level of cloud data security. When a user turns on ADP, their trusted devices retain sole access to the encryption keys for the majority of their iCloud data, thereby protecting it with end-to-end encryption. For users who turn on ADP, the total number of data categories protected using end-to-end encryption rises from 14 to 23 and includes iCloud Backup, Photos, Notes, and more. ADP is available for Apple beta users now, with plans to roll it out in the U.S. by year's end and to expand to other countries next year .

Conceptually, ADP is simple: All CloudKit Service keys that were generated on device and later uploaded to the available-after-authentication iCloud Hardware Security Modules (HSMs) in Apple data centers are deleted from those HSMs and instead kept entirely within the account's iCloud Keychain protection domain. They are handled like the existing end-to-end encrypted service keys, which means Apple can no longer read or access these keys. ADP also automatically protects CloudKit fields that third-party developers choose to mark as encrypted, and all CloudKit assets.

The advantage of ADP is that nearly all your data is inaccessible in the event of a breach of Apple's servers, a hack of your security, legitimate or illegitimate government demands, or criminal efforts. Without possessing an unlocked device linked to your account, you're protected against disclosure of covered types of information. Enabling ADP affords your data better protection, but it also means that accessing your data depends on you having a recovery key or at least one trusted contact you can use if you lose access. Should you lose track of either of those things, you won't be able to recover your data at all.

ADP enables end-to-end encryption for most storage in Apple's iCloud. This is a massive boost in user privacy and security while using Apple products, even in the face of the evidence that Apple is not as private as they had previously promised. According to Apple, these findings "underscore that strong protections against data breaches in the cloud, like end-to-end encryption, have only grown more essential" and that customers should consider using all the tools available to them, including its Advanced Data Protection for iCloud.

In conclusion, ADP is a powerful tool that can help protect your data from unauthorized access. While there is a risk of data loss if you lose your recovery key or trusted contact, the privacy and security gains of making cloud storage end-to-end encrypted are significant. By enabling ADP, you can ensure that your data is protected against breaches, hacks, and other types of cyber-attacks. It's important to stay informed about the latest security threats and take necessary precautions to protect your data and devices.

Read more about this exciting new technology here.

For more information about end-to-end encryption and how you can use it to protect yourself, read De-Mystifying End-to-End Encryption.

---

Related Articles

• Locked In or Locked Out? The Case for Default Data Protection
• How One Night of Ransomware Panic Wiped Out a Startup’s Data — The Backup Plan That Saved Their Next Billion-Dollar Pivot
• Best practices for implementing zero-trust security in law firms