Apple removes advanced security feature for UK customers following government pressure

Apple has announced it will no longer offer its Advanced Data Protection (ADP) feature to UK customers, a move prompted by pressure from the British government. This decision effectively removes the strongest form of end-to-end encryption for iCloud data storage in the region, raising concerns about user privacy and government surveillance.

About Apple’s ADP

ADP, an optional security tool, ensures that only account holders can access their stored data, such as photos and documents, preventing even Apple from viewing it. However, the UK government reportedly sought access to this encrypted data earlier this month, leading Apple to withdraw the feature.

The company is now disabling ADP for new users and will implement a process for existing users to transition away from it. This change means that Apple will be able to access and potentially share user data, including iMessages, with authorities when legally compelled.

Apple’s response

In a statement, Apple expressed disappointment over the saying:

"We are gravely disappointed that the protections provided by ADP will not be available to our customers in the UK given the continuing rise of data breaches and other threats to customer privacy. Enhancing the security of cloud storage with end-to-end encryption is more urgent than ever before. Apple remains committed to offering our users the highest level of security for their personal data and are hopeful that we will be able to do so in the future in the United Kingdom."

Existing ADP users will eventually need to disable the security feature, while new users are already blocked from enabling it. Affected customers now see a message stating, "Apple can no longer offer Advanced Data Protection (ADP) in the United Kingdom to new users."

The UK government has neither confirmed nor denied issuing a Technical Capability Notice (TCN), which would legally mandate access to encrypted data. "We do not comment on operational matters, including for example confirming or denying the existence of any such notices," a Home Office spokesperson said.

Industry response

The move has sparked significant backlash within the tech industry. Graeme Stewart from cybersecurity company Check Point compared the decision to smashing a Pandora’s box and hoping the chaos remains neatly intact.

“At its heart, encryption isn't just for criminals; it's a shield for millions of law-abiding citizens, businesses, and critical infrastructure. Now we are prying open that door to our digital Fort Knox, there's no telling what else might slip through,” Stewart said.

Robert Peake, a technology partner at Keystone Law, suggested that Apple is "calling the government's bluff" by refusing to create a backdoor into its protected data. He predicted that the government will face increasing pressure to reverse its stance, as it undermines the UK's efforts to be seen as a pro-innovation environment.

As the drama continues to unfold it will be interesting to see how everything plays out.