I am much for 3-strikes here.
I am much for 3-strikes here.
The most popular “e2ee” messengers in use (WhatsApp, iMessage) are already clientside backdoored in this manner. Most people in most societies are already under this type of surveillance. This is just to tidy up the small loopholes like Signal etc.
No they are not. This is nonsense. The charitable interpretation is that you’re confusing the systems on iMessage that can voluntarily detect nudity and report it to you (but not the police or Apple) with the systems being proposed in TFA which have mandatory reporting to provider+police. The uncharitable interpretation is that you’re just making stuff up because it sounds good. Please don’t do either, it makes everyone worse off.
Approximately nobody has enabled e2ee for iCloud Backups (and approximately nobody wants to; they'd rather Apple be able to restore their photos and conversations when they've lost their phone and forgotten their password).
Each and every night when plugged in every iPhone by default makes sure that Apple receives an Apple-readable copy of all of the photos and iMessages (or iMessage cross-device sync keys) on the device.
It's not e2ee if the endpoint device escrows the plaintext. Apple and the FBI can read 99%+ of all iMessages in the world in near-realtime.
(This is because, in the usual case, the backup includes the "Messages in iCloud" cross-device endpoint synchronization keys, and Apple of course runs the sync servers that see the encrypted traffic. If you have Messages in iCloud turned off, the backup simply contains all of the iMessages directly, and Apple presumably only gets them once each 24h period when the iCloud Backup runs at night when plugged in and on wifi.)
The only case in which iMessage is e2ee is when both iMessage endpoints either have iCloud disabled, or both iMessage endpoints have iCloud Backup disabled, or both iMessage endpoints have iCloud Advanced Data Protection (backup e2ee) enabled. The moment you add an iPhone not so configured to the iMessage groupchat, the whole thing falls apart, because the defaults are to escrow the plaintext in a non-e2ee fashion.