[dirkt]

> I don't trust anyone, but I only want Apple to hold the keys, not all random repair stores. It is a FAR worse idea to force Apple to provide security bypasses.

Each customer should hold a personalized key to his own hardware. Then the customer can decide whom he trusts, and give the key to whomever he wants (Apple, some other repair store, do it himself, ...)

The problem is that as long as somebody else holds the key to something you bought, you didn't buy it, you leased it. Or borrowed it. Somebody else can still control it to a greater degree than you yourself. And that somebody now has a monopoly he can use to force thing onto you. Like set prices for repair.

That shouldn't happen.

[mikhailt]

That's okay as well, the problem is, how do you do this correctly? You cannot store it in the cloud because that's a bad idea. Where else?

If you give someone a key to the device, how does the device itself enforce a time-limited key, especially if the crypto-based components are about to be replaced?