11 jun. 2024

If Apple’s promises about the opsec of their cloud AI implementation seemed a little nebulous from a user’s perspective — no matter what, you can’t remove the need to trust Apple itself — it sounds to me like that’s because their threat model is a server being compromised, either in a Chinese factory, or by a foreign mole in IT.

I don’t think any of this will help if a fascist US government forces Apple to start logging data with a gag order on top.

Matthew Green (

Attached: 1 image Then they’re throwing all kinds of processes at the server hardware to make sure the hardware isn’t tampered with. I can’t tell if this prevents hardware attacks, but it seems like a start. 8/

Want to know when I post new content to my blog? It's a simple as registering for free to an RSS aggregator (Feedly, NewsBlur, Inoreader, …) and adding to your feeds (or if you want to subscribe to all my topics). We don't need newsletters, and we don't need Twitter; RSS still exists.

Legal information: This blog is hosted par OVH, 2 rue Kellermann, 59100 Roubaix, France,

Personal data about this blog's readers are not used nor transmitted to third-parties. Comment authors can request their deletion by e-mail.

All contents © the author or quoted under fair use.