Apple Says iMessage Interception Would Require Re-Engineering Systems, Has No Interest in Doing So

by

ios_7_messages_iconYesterday, researchers made a presentation at the Hack in the Box conference arguing that Apple's iMessage system could theoretically allow Apple or another party to intercept the encrypted messages. The concern stems in part from Apple's use of a private server for storing users' public keys used to encrypt messages, meaning that senders have no way of knowing whether a potentially false key has been inserted in order to intercept messages intended for a different recipient.

In a statement to AllThingsD, Apple once again denies that it can read iMessages, noting that it would require the service's systems to be re-engineered and that the company has no interest in doing so.

Apple says that QuarksLab’s theory is just that — a theory, and one that would require a rearchitecting of iMessage for it ever to be a threat in the real world.

“iMessage is not architected to allow Apple to read messages,” said Apple spokeswoman Trudy Muller said in a statement to AllThingsD. “The research discussed theoretical vulnerabilities that would require Apple to re-engineer the iMessage system to exploit it, and Apple has no plans or intentions to do so.”

Apple's statement does not actually refute the original claim, simply confirming that as the service is currently configured it is impossible for Apple to intercept iMessages. The researchers' argument rests on the observation that changes could be made to Apple's systems to allow for iMessages to be intercepted without users being aware of the changes.

The result is that Apple is arguing users should trust that the company has no interest in making such changes, and if users take Apple at its word, the researchers' concerns remain merely theoretical. But some users may remained concerned that Apple could be quietly compelled to make changes by government security agencies, compromising Apple's touted "secure end-to-end encryption" for iMessage.

Popular Stories

iPhone SE 4 Vertical Camera Feature

iPhone SE 4 Rumored to Use Same Rear Chassis as iPhone 16

Friday July 19, 2024 7:16 am PDT by
Apple will adopt the same rear chassis manufacturing process for the iPhone SE 4 that it is using for the upcoming standard iPhone 16, claims a new rumor coming out of China. According to the Weibo-based leaker "Fixed Focus Digital," the backplate manufacturing process for the iPhone SE 4 is "exactly the same" as the standard model in Apple's upcoming iPhone 16 lineup, which is expected to...
Read Full Article136 comments
iPhone 16 Pro Sizes Feature

iPhone 16 Series Is Just Two Months Away: Everything We Know

Monday July 15, 2024 4:44 am PDT by
Apple typically releases its new iPhone series around mid-September, which means we are about two months out from the launch of the iPhone 16. Like the iPhone 15 series, this year's lineup is expected to stick with four models – iPhone 16, iPhone 16 Plus, iPhone 16 Pro, and iPhone 16 Pro Max – although there are plenty of design differences and new features to take into account. To bring ...
Read Full Article129 comments
bsod

Crowdstrike Says Global IT Outage Impacting Windows PCs, But Mac and Linux Hosts Not Affected

Friday July 19, 2024 3:12 am PDT by
A widespread system failure is currently affecting numerous Windows devices globally, causing critical boot failures across various industries, including banks, rail networks, airlines, retailers, broadcasters, healthcare, and many more sectors. The issue, manifesting as a Blue Screen of Death (BSOD), is preventing computers from starting up properly and forcing them into continuous recovery...
Read Full Article493 comments
iphone 14 lineup

Cellebrite Unable to Unlock iPhones on iOS 17.4 or Later, Leak Reveals

Thursday July 18, 2024 4:18 am PDT by
Israel-based mobile forensics company Cellebrite is unable to unlock iPhones running iOS 17.4 or later, according to leaked documents verified by 404 Media. The documents provide a rare glimpse into the capabilities of the company's mobile forensics tools and highlight the ongoing security improvements in Apple's latest devices. The leaked "Cellebrite iOS Support Matrix" obtained by 404 Media...
Read Full Article66 comments
Apple Watch Series 9

2024 Apple Watch Lineup: Key Changes We're Expecting

Tuesday July 16, 2024 7:59 am PDT by
Apple is seemingly planning a rework of the Apple Watch lineup for 2024, according to a range of reports from over the past year. Here's everything we know so far. Apple is expected to continue to offer three different Apple Watch models in five casing sizes, but the various display sizes will allegedly grow by up to 12% and the casings will get taller. Based on all of the latest rumors,...
Read Full Article38 comments
tinypod apple watch

TinyPod Turns Your Apple Watch Into an iPod

Wednesday July 17, 2024 3:18 pm PDT by
If you have an old Apple Watch and you're not sure what to do with it, a new product called TinyPod might be the answer. Priced at $79, the TinyPod is a silicone case with a built-in scroll wheel that houses the Apple Watch chassis. When an Apple Watch is placed inside the TinyPod, the click wheel on the case is able to be used to scroll through the Apple Watch interface. The feature works...
Read Full Article133 comments

Top Rated Comments

mattymo Avatar
mattymo
140 months ago
One should reasonably assess that anything transmitted as data over the air or online could be seen by someone somewhere and that a user should have some bit of trust or hope that no one is reading their stuff. If you don't, then you should wax seal letters and mail or deliver them to your recipient yourself.

Personally, I don't care if an Apple employee knows that I'm iMessaging my wife that I'm on my way home from work.
Score: 32 Votes (Like | Disagree)
bbeagle Avatar
bbeagle
140 months ago
ANY data which is transmitted across the internet may be intercepted by someone. Nothing is safe - you MUST trust companies/people.

Why this Apple-centric bashing?

Facebook employes can read your posts, Citibank employees can see your bank transactions, Google employees can know what all your searches are.

This is no less secure than anything else done on the internet.
Score: 29 Votes (Like | Disagree)
LV426 Avatar
LV426
140 months ago
Ah, the dreaded message read by some mystery organization! LMAO! Oh how people love drama! My belief is that, if you are doing nothing wrong, then you have nothing to worry about.

There is always a simple retort to a statement like this from the "Nothing to hide" brigade.

Do you have curtains in your home?
Score: 17 Votes (Like | Disagree)
Solver Avatar
Solver
140 months ago
Apple has no plans or intentions to re-engineer the iMessage system, unless Home Land Security "requests" it.
Score: 14 Votes (Like | Disagree)
TheRainKing Avatar
TheRainKing
140 months ago
Big companies never lie, I see no reason not to trust them. :D

At least it's not Google!
Score: 12 Votes (Like | Disagree)
jamesnajera Avatar
jamesnajera
140 months ago
Once again... APPLE DOES NOT CARE ABOUT YOU, JUST YOUR MONEY. They don't care about your texts. Obviously there is some way that they can view, but you'll never know. They can easily lie to you.

I think Apple truly does care about our security. Look at all the trouble Apple went to for storing Touch ID fingerprints in ARM's Secure Enclave. Do you think HTC does that with there new HTC ONE with fingerprint slide recognition? To act like AAPL does not make a real attempt to protect our information is wrong. Do you see ads in your Apple email? Meanwhile GOOG will whore out your information as fast as they can and throw ads constantly in your face (even more aggressively now, due to the lowering profit margins from ads).
Score: 11 Votes (Like | Disagree)
Read All Comments