> They also need to decrypt the data in order to serve it to their users. That's... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		DavideNL on June 7, 2017 \| parent \| context \| favorite \| on: iOS 11 Location Privacy: "Only While Using" is now... > They also need to decrypt the data in order to serve it to their users. That's the point, they don't (and shouldn't) need to. As Apple itself says in the above linked article: "Apple is working to further harden iCloud security so that even it won't be able to access user information stored on its data servers"

crooked-v on June 7, 2017 [–]

Web access means that you've always got one of three things:

1) the company has the encryption key

2) you give the company the encryption key each time you log in and they store it temporarily

3) everything is getting decrypted in the browser locally (probably tremendously infeasible)

derefr on June 7, 2017 | [–]

#3 is how Mega works.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact