The next iOS 16 update, which will be rolled out in a few days, will provide access to advanced data protection for users around the world. When enabled, this end-to-end encryption system will protect the majority of data backed up to iCloud.
End-to-end encryption of iCloud backups will soon be available to all users. Apple gave the first of this security feature last December only to users residing in the United States. Advanced Data Protection will be rolling out to users worldwide in the stable version of iOS 16.3 (and macOS 13.2) which is scheduled to be released in the next few days.
Almost all personal data finally safe
Until now, only the data stored on an iPhone was well protected by an encryption system. However, for the majority of data backed up to iCloud, Apple did not offer end-to-end encryption. The Californian firm stored the keys used for encryption directly on its servers and could therefore decrypt user data at any time. A gaping hole for the security of users’ personal data since Cupertino could at any time be forced to give these famous keys to the police if a judge ordered it for the purposes of an investigation.
The arrival of this Enhanced Data Protection feature now solves the problem. Because if until now iCloud only encrypted 14 categories of data considered sensitive (keychain of passwords, health data, Apple Maps history, etc.), this new system now makes it possible to protect 23 families of data. However, there are three exceptions: iCloud emails, contacts and calendars are excluded from this end-to-end encryption. And the reason seems rather logical. This data must remain accessible by third-party applications such as mail clients or independent calendar applications.
Data under the full responsibility of the user
To turn on Enhanced Data Protection, you’ll need to go to Settings > Your iCloud Account > iCloud > Advanced Data Protection. The implementation of this feature may help to strengthen the security of your data, it is not without risk if you are a little head in the air. Because once in place, you will be entirely responsible for storing the encryption key, essential to recover your data. You will find on the dedicated support pagea table summarizing the encryption system and the storage of the associated keys according to the type of protection used.
To avoid having to massively manage users who have lost the encryption key protecting their data, Apple will require you to set up at least one recovery contact or personal recovery key before you can activate it. It is thanks to this safeguard that you will be able to recover access to your account (and to the encrypted data) if you have forgotten your password.
MacRumors
