I don’t work for Apple, nor am I privy to the technical specifications of their security. But I and my privacy company SafeJunction do know some things about protecting data and the requirements of on-device and in-the-wild data protection.
If we we wanted to “lock” your phone or computer, it would be impossible. Here’s why. You cant maintain the privacy of any device that is expected to transfer data to the Internet or the Cloud. So, like Apple – who depends upon the value added to you, the customer, of its “iCloud” services, any data leaving your computer or phone and then being stored elsewhere, would be protected only if a “trust” relationship is set-up beforehand between you and the cloud. So whenever that “connection” is destroyed, like when someone tries to unsuccessfully break-in to your phone, the trust no longer exists, and your on-device data may or may not continue to remain on the device. In most cases it is, but the device must be in the hands of an expert (like the FBI technicians) to find out. If Apple no longer has or knows the keys to your data, they cant “open” the phone for you, the FBI. or anyone (At least that’s what they are saying). But if a copy of the data is not in the cloud (at Apple, for instance) then access to it requires an extraordinary intervention (by Apple) and potential exposure of other customers private data, settings, property (audio and video files), etc. (Again that’s what they are telling the FBI)
We – at SafeJunction – move the data off the device and then protect it wherever you want to store it. As long as you’re not a criminal or doing unlawful things with your phone or computer, your data is private and protected. We would, however, assist law enforcement authorities with an investigation. But we would not jeopardize the privacy of other customers by doing so.
Thanks to SafeJunction