It seems like everyone that tries to deploy end-to-end encrypted cloud
storage seems to mess it up, often in new and creative ways. Our special
guests Matilda Backendal, Jonas Hofmann, and Kien Tuong Trong give us a tour through the breakage and discuss a new formal model of how to actually build a secure E2EE storage system.

Watch on YouTube: https://youtu.be/sizLiK_byCw

Transcript: https://securitycryptographywhatever.com/2025/05/19/e2ee-storage/

Links:

- https://brokencloudstorage.info
- https://eprint.iacr.org/2024/989.pdf
- https://www.sync.com
- https://www.pcloud.com
- https://icedrive.net
- https://seafile.com
- https://tresorit.com

"Security Cryptography Whatever" is hosted by Deirdre Connolly (@durumcrustulum), Thomas Ptacek (@tqbf), and David Adrian (@davidcadrian)

Migrating the US government to quantum-resistant cryptography is hard, luckily the gamer presidents are on it. This episode is extremely not safe for work, nor does it reflect the political opinions of, well, anybody.

"Security Cryptography Whatever" is hosted by Deirdre Connolly (@durumcrustulum), Thomas Ptacek (@tqbf), and David Adrian (@davidcadrian)

Apple has pulled the availability of their opt-in iCloud end-to-end encryption feature, called Advanced Data Protection, in the UK. This doesn't only affect UK Apple users, however.

To help us make sense of this surprising move from the fruit company, we got Matt Green, Associate Professor at Johns Hopkins, and Joe Hall, Distinguished Technologist at the Internet Society, on the horn.

Recorded Saturday February 22nd, 2025.

Transcript: https://securitycryptographywhatever.com/2025/02/24/apple-pulls-adp-in-uk/

Watch episode on YouTube: https://youtu.be/LAn_yOGUkR0

Links:

- https://www.lawfaremedia.org/article/apples-cloud-key-vault-and-secure-law-enforcement-access
- https://www.androidcentral.com/how-googles-backup-encryption-works-good-bad-and-ugly
- https://gdpr.eu/right-to-be-forgotten/
- https://www.legislation.gov.uk/id/ukpga/2024/9
- https://www.nytimes.com/2021/05/17/technology/apple-china-censorship-data.html
- https://en.wikipedia.org/wiki/Salt_Typhoon
- Salt Typhoon: https://www.cisa.gov/news-events/news/strengthening-americas-resilience-against-prc-cyber-threats
- https://www.bloomberg.com/news/articles/2025-02-21/apple-removes-end-to-end-encryption-feature-from-uk-after-backdoor-order
- https://support.apple.com/en-us/102651

"Security Cryptography Whatever" is hosted by Deirdre Connolly (@durumcrustulum), Thomas Ptacek (@tqbf), and David Adrian (@davidcadrian)