Apple Fighting UK’s Demand for Backdoor Access to Encrypted iCloud Data

Apple on Tuesday filed a complaint with the UK’s Investigatory Powers Tribunal over the UK government’s secret demand to gain backdoor access to encrypted data stored in iCloud, reports Financial Times.

On February 9, we reported that the UK government had secretly ordered Apple to provide backdoor access to the encrypted data stored in iCloud by users around the globe. The UK government claimed the UK’s Investigatory Powers Act justified the outrageous demand, but Apple has not complied with the order.

A request such as the UK’s is unprecedented — at least from the government of a “free” country. While the UK is certainly not the first country to demand Apple provide a backdoor to encrypted data, those demands have always been limited to the data stored by users inside the requesting country, not all user data from around the globe.

This Limited-Time Microsoft Office Deal Gets You Lifetime Access for Just $39

Sick and tired of subscriptions? Get a lifetime license for Microsoft Office Home and Business 2021 at a great price!

On February 21, Apple turned off its Advanced Data Protection iCloud feature for users in the United Kingdom so it would not have to provide the UK government access to encrypted data. The Advanced Data Protection feature provides end-to-end encryption for data stored in iCloud by Apple users. Even Apple does not have a way to decrypt the data stored with the feature. 

Apple is expected to wage a legal battle against the UK government demands, as it fights to protect user privacy. The legal challenge filed today by Apple could be heard by the tribunal as soon as later this month. The court case could be heard privately and without public notice, due to Apple being restricted from discussing the order in public.

When the secret order was revealed last month, Apple made it clear that it would pull end-to-end encryption from the UK rather than bow to the UK government’s demands. While that only applies to Advanced Data Protection right now, it could result in other popular features like iMessage and FaceTime being shut down in the UK, as Apple promised to do in 2023 in response to a controversial surveillance bill. The UK claims it wants backdoor access to the encrypted data to (say it with me, you know this) fight terrorism and child sex abuse. 

In March, Apple told Parliament, “There is no reason why the UK [government] should have the authority to decide for citizens of the world whether they can avail themselves of the proven security benefits that flow from end-to-end encryption.”

Meanwhile, a UK Home Office spokesperson declined to discuss any technical demands. “We do not comment on operational matters, including, for example, confirming or denying the existence of any such notices,” said the spokeshole.

The United States government is investigating whether the United Kingdom violated a bilateral agreement by demanding Apple provide backdoor access to end-to-end encrypted iCloud data. The CLOUD Act (Clarifying Lawful Overseas Use of Data Act) prohibits either country from demanding access to the other country’s citizens’ data. 

Apple has long fought against calls by governments and law enforcement agencies for backdoor access to encrypted data. In 2016, Apple even refused a US government demand to unlock an iPhone used by a shooter in San Bernardino, California, with Apple CEO Tim Cook likening an FBI-requested backdoor to the software equivalent of cancer.