←back to thread

Private Cloud Compute Security Guide

(security.apple.com)
398 points djoldman | 7 comments | 06 Nov 24 13:48 UTC | HN request time: 1.686s | source | bottom
Show context
max_[dead post] ◴[06 Nov 24 15:46 UTC] No.42064054[source]
[flagged]
jasongill ◴[06 Nov 24 16:03 UTC] No.42064335[source]
The core of this article, if I understand it correctly, is that macOS pings Apple to make sure that apps you open are safe before opening them. This check contains some sort of unique string about the app being opened, and then there is a big leap to "this could be used by the government"

Is this the ideal situation? No, probably not. Should Apple do a better job of communicating that this is happening to users? Yes, probably so.

Does Apple already go overboard to explain their privacy settings during setup of a new device (the pages with the blue "handshake" icon)? Yes. Does Apple do a far better job of this than Google or Microsoft (in my opinion)? Yes.

I don't think anyone here is claiming that Apple is the best thing to ever happen to privacy, but when viewed via the lens of "the world we live in today", it's hard to see how Apple's privacy stance is a "scam". It seems to me to be one of the best or most reasonable stances for privacy among all large-cap businesses in the world.

replies(2): >>42065776 #>>42070799 #
astrange ◴[06 Nov 24 22:50 UTC] No.42070799[source]
> This check contains some sort of unique string about the app being opened,

It's not unique to the app, the article is just wrong. It's unique to the /developer/, which is much less specific.

replies(1): >>42073631 #
1. saagarjha ◴[07 Nov 24 05:18 UTC] No.42073631[source]
Yeah, no. This is a stupid argument. If you’re opening an app signed by Mozilla Corporation it’s probably Firefox. If you’re opening an app from [porn app publisher] guess what, it’s a porn app. Nobody cares which one.
replies(1): >>42073947 #
2. astrange ◴[07 Nov 24 06:19 UTC] No.42073947[source]
The difference is that it happens much less often because it's cached.
replies(1): >>42074643 #
3. saagarjha ◴[07 Nov 24 08:12 UTC] No.42074643[source]
Again, how does this help the "I opened app from porn developer now my computer broadcasts that I did that" case?
replies(1): >>42074990 #
4. astrange ◴[07 Nov 24 09:07 UTC] No.42074990{3}[source]
I just checked my Steam library and none of them use codesigning so I guess that solves that. Video playing apps do though, so depends on plausible deniability.

It does seem like this could be fixed using the private relay system. It certainly doesn't need to be unencrypted.

replies(1): >>42075064 #
5. saagarjha ◴[07 Nov 24 09:20 UTC] No.42075064{4}[source]
Who would run the intermediate hop, though? Other Macs?
replies(1): >>42084845 #
6. astrange ◴[08 Nov 24 07:04 UTC] No.42084845{5}[source]
Randomly selected CDN companies.

https://security.apple.com/documentation/private-cloud-compu...

replies(1): >>42093704 #
7. saagarjha ◴[09 Nov 24 10:48 UTC] No.42093704{6}[source]
I guess it would be nice if they added that then :)