[warkdarrior]

It's certainly possible through remote attestation of software. This is basically DRM on servers (i.e., the data is not decrypted on the server unless the server stack is cryptographically attested to match some trusted configuration).

[Hizonner]

That requires trusting that the attestation hardware does what it says it does, and that the larger hardware system around it isn't subject to invasion. Those requirements mean that your assurance is no longer entirely cryptographic. And, by the way, Apple apparently plans to be building the hardware.

It could be a very large practical increase in assurance, but it's not what they're saying it is.

[ethbr1]

I haven't read all the marketing verbage yet, but even 'Our cloud AI servers are hardware-locked and runtime-checked to only run openly auditable software' is a huge step forward, IMHO.

It's a decent minimum bar that other companies should also be aiming for.

Edit: ref https://security.apple.com/blog/private-cloud-compute/