'Apple has compromised allowing the Chinese government to censor iCloud and the App Store,' reports



The New York Times reports that internal documents and employee testimony revealed that Apple had made concessions to the Chinese government on privacy and security to sell devices and roll out services in China. ..

In China, Apple Compromises on Censorship and Surveillance --The New York Times

https://www.nytimes.com/2021/05/17/technology/apple-china-censorship-data.html

How Apple Stays on the Good Side of Chinese Authorities --The New York Times
https://www.nytimes.com/2021/05/17/technology/apple-china-privacy-censorship.html


The New York Times has taken control of Apple's data centers in China, with the Chinese government taking control of Apple's data centers in other countries, based on Apple's internal documents and interviews with 17 current and former Apple employees and four security experts. It also reports that it has abandoned the iCloud encryption technology used in.

US regulations prohibit Apple from passing data to the Chinese government. However, the New York Times points out that a regulatory loophole is 'access to local storage in the data center.'

Based in China, Guizhou-Cloud Big Data (GCBD) legally owns and operates iCloud servers in China. In other words, the Chinese government can request access to data from GCBD instead of Apple. 'Management of iCloud by GCBD' was proposed to Apple by the Chinese government, and Apple is believed to have agreed to escape the appeal from the United States.


by tefl Search

In addition, Apple originally planned to store encrypted key storage in the United States. However, it is reported that Apple will move iCloud encryption key storage from the United States to China in late February 2018 in order to comply with China's cybersecurity law.

Although there is no evidence that the Chinese government is accessing iCloud data, including your personal information, the Chinese government will now be able to access emails, photos, documents, contacts, and location information for Chinese Apple users. Become.

Ross Anderson, a cybersecurity researcher at the University of Cambridge, said in an internal document, 'Given the fact that cryptographic key storage has been compromised and is controlled by a third-party company, China asks Apple for permission. I'm sure I can get the data without it. '

In addition, compromises with the Chinese government have also been made in the App Store for China, creating a dedicated team in-house to reject or remove apps that may be in violation of Chinese regulations, the New York Times said. I am reporting.



In fact, the app released by Guo Wengui, a businessman who exposed Communist corruption on YouTube, was removed from the App Store in 2018. Apple explained that 'Mr. Guo's app was found to be illegal in China,' but the New York Times points out that Mr. Guo's app was erased at the direction of Chinese authorities.

In addition, Apple has trained reviewers specifically for China to see if it uses special software to touch on topics regulated in China, such as Tiananmen Square, Falun Gong, Tibet, and Taiwan. He said he was checking. Apple has explained to the New York Times that it is 'a measure to comply with Chinese law.'

'It's a feature of Apple's products and services, and we're building the same barriers in every country for the privacy and security that our customers need,' the New York Times reported. Many of the claims made in the report are based on incomplete, old and inaccurate information, ' (PDF file) issued . In addition, 'As in other regions, China responds to requests from law enforcement agencies with appropriate legal procedures, and when requested to provide personal information of users, the content is regularly stated. I am reporting in a transparency report. '

in Mobile,   Security, Posted by log1i_yk