October 21, 2024

What is Advanced Data Protection and Contact Key Verification in iOS?

Advanced Data Protection and Contact Key Verification were recently introduced in iOS.

The iPhone is often considered one of the most secure mobile devices due to Apple’s tightly controlled ecosystem, frequent software updates, and emphasis on privacy. iOS restricts app permissions more strictly compared to Android, for instance, reducing the risk of malicious apps accessing sensitive data. Additionally, Apple encrypts user data both at rest and in transit, and features like Face ID and Touch ID enhance device security. In contrast, many Android devices rely on manufacturers and carriers for updates, which can lead to slower security patches and greater fragmentation. While Android offers flexibility, this can sometimes expose users to more security vulnerabilities compared to the more controlled environment of iOS.

What is Advanced Data Protection and Contact Key Verification in iOS?

What is Advanced Data Protection?

Advanced Data Protection is Apple’s name for end-to-end encryption for your iCloud data. This means that data is encrypted when it leaves your device, stored in that encrypted format on Apple’s servers, then decrypted with the required key using trusted devices, like your iPhone. The feature is optional and offers the highest level of cloud data security. When enabled, the encryption keys for the majority of your iCloud data are stored on your device, providing end-to-end encryption. This means that only you have the key to decrypt your data, and not even Apple can access your data on its servers. 

The feature includes end-to-end encryption for iCloud Backup, Photos, Notes, and more, but it does not cover iCloud Mail, Contacts, or Calendars due to the need to interoperate with global systems. To enable Advanced Data Protection, you’ll need to set up at least one alternative recovery method, such as a recovery contact or a recovery key. 

Advanced Data Protection is designed to maintain end-to-end encryption for shared content as long as all participants have the feature enabled. It’s supported in most iCloud sharing features, including iCloud Shared Photo Library, iCloud Drive shared folders, and shared Notes. However, iWork collaboration, the Shared Albums feature in Photos, and sharing content with “anyone with the link,” don’t support Advanced Data Protection and are secured using standard data protection.

What is Contact Key Verification?

Contact Key Verification is a security feature introduced by Apple to enhance the privacy and security of iMessage conversations. It works by verifying the identity of the person you’re messaging with, ensuring that you’re communicating with the person you intend to. Here’s how it works:

  • Automatic Verification: When you use iMessage, your messages are end-to-end encrypted. Contact Key Verification automatically verifies that you’re messaging with the person you intend to. If there’s an error in this verification process, you’ll receive an alert in the iMessage conversation. 
  • Manual Verification: You can manually verify contacts by comparing verification codes. When you manually verify a contact, iMessage Contact Key Verification verifies that the code you have saved matches the one provided by the iMessage servers for that contact and notifies you if the verification code changes. 
  • Public Verification Code: You can share a Public Verification Code on social media or save others’ codes to enhance trust in your communications.
  • Verification Process: To verify a contact, you can select their name in iMessage, select Info, then select Edit, and enter the Public Verification Code shared by your contact. If the code matches and is verified, a checkmark will show in their Contact Card and next to their name in iMessage conversations. 
  • Security Benefits: Contact Key Verification provides an extra layer of protection against sophisticated cyber threats, ensuring you’re only messaging those you intend to. It also offers automatic alerts and the ability to compare unique codes in real-time to verify identities in the Messages app. 

It’s important to note that Contact Key Verification is not designed to prevent fraud such as phishing or other text message-based scams. It is a security feature to ensure that users are messaging with the correct person

How do I enable Advanced Data Protection?

To enable Advanced Data Protection for iCloud, which offers end-to-end encryption for your iCloud data, you need to have an iOS version of 16.2 or later on all devices connected to iCloud.

  1. Go to Settings > [Your name] > iCloud > Advanced Data Protection.
  2. Follow the prompts to confirm your recovery contact or enter your recovery key.

How do I enable Contact Key Verification?

To use iMessage Contact Key Verification on your iPhone, iPad, Apple Watch, Mac, or Apple Vision Pro, you need:

  • iOS 17.2 or later, iPadOS 17.2 or later, watchOS 10.2 or later, macOS 14.2 or later, and visionOS 1.1 or later on all devices where you’re signed in to iMessage with your Apple Account
  • To be signed in to iCloud and iMessage with the same Apple Account
  • iCloud Keychain turned on on all devices
  • Two-factor authentication turned on for your Apple Account
  1. Go to Settings > Messages > Contact Key Verification.
  2. Follow the instructions to generate and share a verification code with your contact.

To use Contact Key Verification, users must have their devices passcode or password protected, be signed in to iCloud and iMessage with the same Apple Account.. Additionally, the person they are trying to verify must be in their contacts.

What happens if I have Contact Key Verification enabled but my contact doesn’t?

If you have Contact Key Verification enabled but your contact doesn’t, you will see their name and “Verification Off” in your iMessage conversation.

When Contact Key Verification is enabled on your device, it provides an extra layer of security by verifying that you’re messaging with the person you intend to. If your contact has not enabled Contact Key Verification, you will see their name and “Verification Off” in your iMessage conversation. This means that while you have the feature active, your contact does not, and you will not receive the automatic alerts that come with the feature. 

To use Contact Key Verification, both you and your contact need to have it enabled. If you have it turned on but your contact doesn’t, you will see their name with “Verification Off” next to it. To use the feature, you will need to ask your contact to turn it on. 

It’s important to note that Contact Key Verification is not designed to prevent fraud such as phishing or other text message-based scams. It is an additional security measure to ensure that you’re communicating with the right person. 

How Contact Key Verification work with Android or non-Apple contacts?

For contacts who use Android or other non-Apple devices, the verification process would not be possible through the iMessage app. Instead, users can manually verify contacts by comparing verification codes shared through other means, such as a phone call or in-person meeting.

For contacts who do not have an Apple device, users can share their Public Verification Code, which is available in the Contact Key Verification pane in Apple ID settings. This code can be used by others to verify the user’s identity when sending a message.

For those concerned about privacy, Contact Key Verification provides an extra layer of security against sophisticated cyber threats and offers automatic alerts and the ability to compare unique codes in real-time to verify identities in the Messages app. 

Are there downsides or potential issues with using Advanced Data Protection?

There are several potential downsides and issues associated with using ADP:

  • Difficulty in Regaining Access: If you lose access to your device or recovery key, it could be challenging to regain access to your data. ADP prevents Apple from accessing your data, which means you won’t be able to recover it through Apple’s services.
  • Limited Protection for Certain Services: Not all iCloud services are covered by ADP. Services like iCloud Mail, Contacts, and Calendars do not use end-to-end encryption and are limited to “in transit” and “on-server” encryption with keys stored on Apple’s servers.
  • Concerns By Government Agencies: The FBI and other law enforcement agencies have expressed concerns about the implications of encryption on their ability to access data.
  • Metadata Not Protected: Some metadata, such as whether a note is pinned or marked to be deleted, is not protected by ADP. Apple has stated that they are committed to ensuring more data, including this kind of metadata, is end-to-end encrypted when ADP is enabled.
  • Potential for Non-Audited Code Scanning: There is a possibility that non-audited code could scan the content of files before encryption, which could be a concern for users who are wary of Apple’s practices.

It’s important to weigh these potential issues against the benefits of enhanced privacy and security when deciding whether to enable ADP. Users should also consider the risks associated with storing sensitive data on cloud services and take additional steps to secure their data beyond what ADP offers.

Are there downsides or potential issues with using Contact Key Verification?

While there are no downsides to using Contact Key Verification, some users have reported issues such as the verification status disappearing or not matching between devices. However, these issues may resolve themselves over time. It’s important to note that if you have a new iPhone and enable Contact Key Verification, older devices will not be able to sync or use iMessage. Additionally, if you’re using an older device that can’t keep up with the latest updates, you should sign it out of iMessage.

What error messages can arise with Contact Key Verification?

These alerts can indicate validation errors or problems with verifying contacts. 

For example, if one user has enabled Contact Key Verification but one of them has not, the other user will see an alert saying “Verification Off” next to the contact’s name. If there’s a validation error, an alert will appear by the contact’s name, and users might need to re-verify the contacts again. 

Additionally, if a user adds a new device to their Apple ID, the other person will be notified, and the contact card will show a checkmark next to the contact’s name, indicating that the contact has been verified.

Our Reviews

Come Visit Us
Choose a location below.
View in Google Maps