| I agree with you on the point you're getting at. Really anything that can be potentially logged due to a bug or accessed by a human may as well be considered the same as perpetual, in my opinion. The difference is I trust Apple enough to turn off Siri on my phone and feel safe nothing is being broadcast online or stored locally for another app to access. Is this guaranteed? Hell no. I also don't read the source code of every open source program I use (and even if I do I'm aware people exist much smarter than me who can obfuscate their malicious code). Apple's business strategy, their history of actions, and their security system make me feel confident enough in _assuming_ my voice never reaches their servers and cannot be turned in by an app without explicit permissions. That last bit is also important. Like the Android Facebook background audio "bug", even if it is really a bug, to me it's no different. Lastly even if Amazon were trustworthy about not listening when they say and not accessing voice data they shouldn't, I don't trust the platform very much. Quick idea, can you create a multi-turn alexa skill that after the first turn pretends Alexa is finished but it is actually actively recording and waiting to fake a response to "Alexa! <do other skill>"? Personally I don't know, don't have the source to check, and I wouldn't really believe any amazon engineer coming in here and saying "It's impossible to exploit". (Even if my 5 minute idea is impossible multiply that times thousands of malicious people spending much longer trying to exploit it) edit: Don't mean to imply an Apple is impossible to hack or exploit. Just that they take a more active stance and have the history to back it up. |
the NSA don't need to hack them... they can just ask (they did).
what we need is true e2e encryption ...