> They also need to decrypt the data in order to serve it to their users. That's... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

DavideNL on June 7, 2017 | parent | context | favorite | on: iOS 11 Location Privacy: "Only While Using" is now...

> They also need to decrypt the data in order to serve it to their users.

That's the point, they don't (and shouldn't) need to. As Apple itself says in the above linked article:

"Apple is working to further harden iCloud security so that even it won't be able to access user information stored on its data servers"

crooked-v on June 7, 2017 [–]

Web access means that you've always got one of three things:

1) the company has the encryption key

2) you give the company the encryption key each time you log in and they store it temporarily

3) everything is getting decrypted in the browser locally (probably tremendously infeasible)

derefr on June 7, 2017 | [–]

#3 is how Mega works.

Join us for AI Startup School this June 16-17 in San Francisco!
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact