Encryption

Starting today, contents of your WhatsApp chats are now protected with full end-to-end encryption

Christian Zibreg ∙ April 7, 2016

WhatsApp today announced it is turning on end-to-end encryption to make it virtually impossible to eavesdrop on your communications.

Starting today, all text messages, photo and video attachments, documents, voice messages and VoIP calls are protected with full end-to-end encryption, developed in collaboration with Open Whisper Systems.

Similar to Apple's iMessage and some other instant messaging platforms such as Telegram, end-to-end encryption makes the contents of WhatsApp chats unreadable to third-parties. And with the encryption keys stored on a user's device, they cannot decrypt chats if served a valid government request.

DOJ unlocks San Bernardino shooter’s iPhone, withdraws case against Apple

Cody Lee ∙ Updated May 17, 2018

The Department of Justice filed a request on Monday, asking the court to vacate its order to compel Apple to assist agents in unlocking an iPhone. As expected, the FBI was able to crack the handset without the company's assistance.

The filing comes a week after the DOJ asked the court to postpone its hearing with Apple, claiming it had found a possible method for accessing the data stored on an iPhone 5c, which belonged to San Bernardino shooter Syed Farook.

iOS 9.3 patches a bug that would let attackers decrypt photos and videos sent via iMessage

Christian Zibreg ∙ March 21, 2016

A group of Johns Hopkins University researchers led by computer science professor Matthew D. Green has discovered a critical bug in Apple's stock Messages app for the iPhone, iPod touch and iPad.

The vulnerability would allow nefarious users to decrypt photos and videos sent over iMessage, but there's nothing to worry about—iOS 9.3, which we expect to release after today's Apple event wraps up, contains a patch for this oversight on Apple's part.

WSJ: Apple working to strengthen iCloud encryption without inconveniencing users

Christian Zibreg ∙ March 16, 2016

In the wake of the high-stake fight between Apple and the United States government over encryption and the right to create products with nearly unbreakable security measures, Apple is now working hard to make it impossible for law enforcement to gain access to data inside device backups on iCloud.

As reported today by The Wall Street Journal, Apple executives are “wrestling with how to strengthen iCloud encryption without inconveniencing users.”

How Apple secures its products and services

Anthony Bouchard ∙ March 9, 2016

Apple's security and privacy features that come standard on every iOS device, such as end-to-end encryption and Activation Lock, are getting all the talk around the internet as of late as the Apple vs. FBI case continues to escalate.

What can be learned from this case is not only does Apple want to protect your privacy, but the a large number of American people also want to have their privacy. The FBI, on the other hand, wants a quick way to get into any iPhone they deem "suspicious" so long as they can get a court order to search it.

So just how secure is your Apple data, and what protection standards does Apple have in place for you? That's just what we're going to talk about in this piece.

Can’t the Feds exploit San Bernardino shooter iPhone’s chips to break into encrypted data?

Christian Zibreg ∙ Updated March 28, 2016

The world's most powerful government has locked horns with the world's most powerful corporation in a battle that Apple implies has the potential to affect civil rights for a generation. As you know, the Justice Department gave Apple until February 26 to respond to its court order.

In it, the government is asking Apple's engineers to create a special version of iOS that would allow brute-force passcode attacks on the shooter's phone electronically.

Now, some people have suggested that the government's experts could make an exact copy of the phone's flash memory to brute-force its way into encrypted data on a powerful computer without needing to guess the passcode on the phone or demand that Apple create a version of iOS that'd remove passcode entry restrictions.

While this is technically feasible, the so-called de-capping method would be painstakingly slow and extremely risky, here's why.

Gmail gains lock and question mark icons to indicate if emails are encrypted and authenticated

Christian Zibreg ∙ February 9, 2016

In honor of the Safer Internet Day, Google on Tuesday announced in a blog post that it has added a lock icon in Gmail's web interface to denote whether or not your emails are encrypted. Additionally, a question mark icon on a sender's avatar indicates messages that are not authenticated.

Gmail has supported encrypted connections between a user's machine and its servers for some time now, but this doesn't provide the full protection if a sender's email client or email service does not support encryption in transit using TLS.

The new lock icon makes it easier to see if a message you received from someone is encrypted or not, and whether or not it can be authenticated.

Apple opens cryptographic libraries used to protect iOS and OS X to app makers

Christian Zibreg ∙ October 30, 2015

Apple yesterday announced it's opened up its cryptographic libraries, the same ones used to protect iOS and OS X, to third-party developers. As reported by VentureBeat, the move is significant in that developers can now implement advanced security features into their apps, for free.

In addition to open-sourcing the cryptographic libraries, Apple back in the summer promised to open source its Swift programming language by the end of the year.

Apple tells judge it’s ‘impossible’ to unlock and extract data from devices running iOS 8 or later

Cody Lee ∙ Updated April 19, 2018

Late Monday, Apple filed a brief with a federal magistrate judge in Brooklyn, New York, reiterating its inability to unlock its devices. As it has before, the company told the judge that accessing data stored on a locked device running iOS 8 or later is technically impossible, due to strengthened encryption methods.

Apple’s focus on privacy slowing HomeKit rollout as cutting-edge encryption produces unacceptable lag

Christian Zibreg ∙ July 22, 2015

HomeKit, Apple's platform for the connected home, sounds terrific on paper. In reality, HomeKit is like CarPlay, another Apple platform plagued with slower than expected rollout.

There are currently only five HomeKit-compatible accessories on the market: the Ecobee3, Elgato Eve, iHome iSP5 SmartPlug, Insteon Hub and Lutron Caseta Wireless Lighting Starter Kit.

A new report alleges that wider HomeKit adoption is being held back by Apple's stringent encryption requirements. Apparently, Bluetooth chips currently available on the market and certified for HomeKit just can't handle Apple's super strong encryption without degrading the experience.

As Forbes reported Wednesday, Apple imposes a high level of encryption on HomeKit accessory makers in order to prevent eavesdropping and protect the privacy of its users. Apple's focus on privacy, however, has created unacceptable levels of lag in prototype Bluetooth products whose chips have sub-par processing capability.

Department of Justice compelling smartphone makers to bypass encryption

Christian Zibreg ∙ December 2, 2014

The United States Department of Justice is reportedly pursuing an unusual legal strategy to compel cellphone makers to assist investigations by removing device encryption on iPhones and other mobile devices, according to findings by technology website Ars Technica.

Tapping the All Writs Act, feds want Apple’s help to defeat encrypted phones, as revealed by newly discovered court documents from two federal criminal cases in New York and California.

WhatsApp starts encrypting instant messages on Android, iOS and other platforms coming soon

Christian Zibreg ∙ Updated October 14, 2018

WhatsApp, the most popular instant-messaging platform with more than 600 million users which Facebook snapped up for $16 billions earlier this year, has started to protect data with end-to-end encryption, The Wall Street Journal reports.

For the time being, text messages exchanged between Android users of WhatsApp are being encrypted by default.

It shouldn't be too long until the company adds encryption to the iOS app and other mobile platforms. Encryption protects users' communications from governments and hackers alike by making the data unreadable as it travels between servers.