💾 Archived View for dioskouroi.xyz › thread › 29390398 captured on 2021-11-30 at 20:18:30. Gemini links have been rewritten to link to archived content
-=-=-=-=-=-=-
________________________________________________________________________________
There seems to be widespread misunderstanding between encryption in transit and encryption at rest. This tweet is focused on data at rest. The connection between your phone and Apple is encrypted.
Google's Android backup is similarly not e2e encrypted.
IIRC at least chrome can be.
With that said, I would prefer cloud services to act as dumb storage for encrypted block devices
I think Mega was the only one that supported that
This doesn't appear to be true.
https://www.androidcentral.com/apple-may-have-ditched-encryp...
Googles approach depends on their security chip _located in their datacenter_ and not auditable by anybody... The usual definition of "end to end" doesn't include that...
You seem to have misread the post. The data is encrypted using a key _on the device_. It is end-to-end encrypted. The key is encrypted on device and backed up to Google and protected by a security chip that requires verification from the device _to retrieve_ (unwrap the Titan encryption), which neither Google nor anybody else can pass because the security chip would lock them out after too many attempts. Even if they were to succeed in retrieving it, they would not be able to unwrap the device encryption of the key.