Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

> I would gladly take this if it removes a barrier to making iCloud E2E encrypted; they are likely bound to do this type of detection, but doing it client-side before syncing feels like a sane way to do it.

But there is an issue there. Now there is a process on your phone capable of processing unencrypted data on your phone and communicating with the outside world. That is spyware which will almost certainly be abused in some way.



> Now there is a process on your phone capable of processing unencrypted data on your phone and communicating with the outside world.

What? That’s what all apps by definition do. My retinas can’t do decryption yet!


From the proposal it seems that this system 1. cannot be opted out of and 2. can run at any time the phone is powered on without user consent.

That puts it clearly in a different category from apps.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: