Apple Platform Security (Jan 2026) [pdf]
by pieterr on 1/31/2026, 4:04:03 PM
https://help.apple.com/pdf/security/en_US/apple-platform-security-guide.pdf
Comments
by: wcfrobert
Apple's commitment to privacy and security is really cool to see. It's also an amazing strategic play that they are uniquely in the position to take advantage of. Google and Meta can't commit to privacy because they need to show you ads, whereas Apple feels more like a hardware company to me.
1/31/2026, 6:03:05 PM
by: willturman
You can request a downloadable a copy of any/all of the data that Apple has associated with your account at <a href="https://privacy.apple.com" rel="nofollow">https://privacy.apple.com</a>.<p>This apparently includes retrieving all photos from iCloud in chunks of specified size, which seems an infinitely better option than attempting to download them through the iCloud web interface which caps downloads to 1000 photos at a time at less than impressive download speeds.
1/31/2026, 6:37:21 PM
by: gumby271
It sucks that Apple decided to monitize iPhone the way they have, by controlling the owners ability to install software of their choosing. Ignoring the arguments one could make about this making it "more secure" it's clearly disrespectful to the power user that doesn't want to beg Apple's permission to use their computer. I'll grant them their security claims are sound, but it's hard to take them serious regarding privacy arguments.<p>Our choices are either (A) an OS monitized by tracking user interaction and activity, or (B) monitized by owning the basic act of installing software on the device, both of these options suck and I struggle to give up the more open option for one that might be more secure.
1/31/2026, 7:11:18 PM
by: easton
Web version: <a href="https://support.apple.com/guide/security/welcome/web" rel="nofollow">https://support.apple.com/guide/security/welcome/web</a>
1/31/2026, 5:35:58 PM
by: OGEnthusiast
Glad there's still at least one tech company that cares about personal security / opsec.
1/31/2026, 5:11:14 PM
by: drnick1
But all the software is closed source, and there is little to no opportunity to verify all these security claims. You don't have the encryption keys, so effectively the data is not under your control.<p>If you want to see security done well (or at least better), see the GrapheneOS project.
1/31/2026, 5:54:45 PM
by: whitepoplar
Given that A19 + M5 processors with MIE (EMTE) were only recently introduced, I wonder how extensively MacOS/iOS make use of the hardware features. Is it something that's going to take several years to see the benefit, or does MIE provide thorough protection today?
1/31/2026, 5:49:42 PM
by: rrgok
Sometime I wonder how much overhead all these security features take in terms of performance.<p>I would really like to see a benchmark with and without security measures.
1/31/2026, 5:56:29 PM
by: modeless
Then they turn around and upload your iMessages to their own servers in a form that they can read, breaking their own E2EE. Google Messages fixed this issue a long time ago. Why hasn't Apple? <a href="https://james.darpinian.com/blog/apple-imessage-encryption" rel="nofollow">https://james.darpinian.com/blog/apple-imessage-encryption</a>
1/31/2026, 5:36:08 PM
by: buildbot
262 pages!!! Pretty interesting to see how the different SoCs have evolved security wise over time.
1/31/2026, 5:34:04 PM
by: zb3
Protects the device well... against the owner of the device using it as they wish :)
1/31/2026, 6:01:00 PM
by: varispeed
No mention of Pegasus and other software of such sort. Can latest iOS still be infected?<p>There is no point creating such document if elephant in the room is not addressed.
1/31/2026, 5:18:16 PM
by: random_duck
Wow, this is hardcore (pun intended).
1/31/2026, 5:25:19 PM