Apple has extended it security feature to many additional iCloud data. it is expanding end-to-end encryption to iCloud Photos, Notes, Backups to enhanced security. By default iCloud protect several 14 data categories.
According to apple, this Advanced Data Protection for iCloud will be available to U.S. users by the end of the year and will start rolling out to the rest of the world in early 2023.
The Advanced Data Protection will be available on device with iOS 16.2, iPadOS 16.2 and macOS 13.1 software update. This feature is an opt-in enable by the user to choose for data protection in the case of a data breach in the cloud they have the enable feature on.
However, If you enable Advanced Data Protection and then lose access to your account, Apple will not have the encryption keys to help you recover it .
You will need to use your device passcode or password, a recovery contact, or a personal recovery key. Because the majority of your iCloud data will be protected by end-to-end encryption, you’ll be guided to set up at least one recovery contact or recovery key before you turn on Advanced Data Protection.
You must also update all your Apple devices to a software version that supports this feature.
Data categories and encryption
The table below provides more detail on how iCloud protects your data when using standard data protection or Advanced Data Protection.
|Data category||Standard data protection||Advanced Data Protection|
|Encryption||Key storage||Encryption||Key storage|
|iCloud Mail (1)||In transit & on server||Apple||In transit & on server||Apple|
|Contacts (2)||In transit & on server||Apple||In transit & on server||Apple|
|Calendars (2)||In transit & on server||Apple||In transit & on server||Apple|
|iCloud Backup (including device and Messages backup) (3)||In transit & on server||Apple||End-to-end||Trusted devices|
|iCloud Drive (4)||In transit & on server||Apple||End-to-end||Trusted devices|
|Photos||In transit & on server||Apple||End-to-end||Trusted devices|
|Notes||In transit & on server||Apple||End-to-end||Trusted devices|
|Reminders||In transit & on server||Apple||End-to-end||Trusted devices|
|Safari Bookmarks||In transit & on server||Apple||End-to-end||Trusted devices|
|Siri Shortcuts||In transit & on server||Apple||End-to-end||Trusted devices|
|Voice Memos||In transit & on server||Apple||End-to-end||Trusted devices|
|Wallet passes||In transit & on server||Apple||End-to-end||Trusted devices|
|Passwords and Keychain (5)||End-to-end||Trusted devices||End-to-end||Trusted devices|
|Health data||End-to-end||Trusted devices||End-to-end||Trusted devices|
|Home data||End-to-end||Trusted devices||End-to-end||Trusted devices|
|Messages in iCloud (6)||End-to-end (6a)||Trusted devices||End-to-end||Trusted devices|
|Payment information||End-to-end||Trusted devices||End-to-end||Trusted devices|
|Apple Card transactions||End-to-end||Trusted devices||End-to-end||Trusted devices|
|Maps (7)||End-to-end||Trusted devices||End-to-end||Trusted devices|
|QuickType Keyboard learned vocabulary||End-to-end||Trusted devices||End-to-end||Trusted devices|
|Safari (8)||End-to-end||Trusted devices||End-to-end||Trusted devices|
|Screen Time||End-to-end||Trusted devices||End-to-end||Trusted devices|
|Siri information (9)||End-to-end||Trusted devices||End-to-end||Trusted devices|
|Wi-Fi passwords||End-to-end||Trusted devices||End-to-end||Trusted devices|
|W1 and H1 Bluetooth keys||End-to-end||Trusted devices||End-to-end||Trusted devices|
|Memoji||End-to-end||Trusted devices||End-to-end||Trusted device|
What is end-to-end encryption ?
End-to-end encryption is an advance security layer that prevent third party from accessing your data even if there’s an account breach.
On apple data encryption, End-to-end encrypted data can be decrypted only on your trusted devices where you’re signed in with your Apple ID. No one else can access your end-to-end encrypted data not even Apple and this data remains secure even in the case of a data breach in the cloud. If you lose access to your account, only you can recover this data, using your device passcode or password, recovery contact, or recovery key.
Leave a Reply