Cyber & IT Supervisory Forum - Additional Resources

TLP:GREEN

If a user loses access to their account, they can only recover their data using their device passcode or password, a recovery contact, or a recovery key. 211 When enabling this feature, you will be prompted to set up at least one recovery contact or recovery key before Advanced Data Protection is enabled. 212 When Advanced Data Protection is enabled, access to a user’s data via iCloud.com is disabled by default, although they will have the option to turn on data access on iCloud.com, which allows the web browser and Apple to have temporary access to data-specific encryption keys. 213 Before you can enable Advanced Data Protection, you will first have to update all their devices to the latest software versions, otherwise you will have to remove these devices from their account as they will not support end-to-end encryption. Advanced Data Protection will be available on the iPhone, iPad, and Mac starting with iOS 16.2, iPadOS 16.2, and macOS 13.1.

12.7.1 Standard Data Protection Versus Advanced Data Protection Standard data protection is the default setting for a user’s account which means their iCloud data is encrypted, the encryption keys are secured in Apple

data centers so Apple can help a user with data recovery, and only certain data is end-to-end encrypted. 214 Advanced Data Protection for iCloud is an optional setting that offers Apple’s highest level of cloud data security. If a user chooses to enable Advanced Data Protection, their trusted devices retain sole access to their encryption keys for most of their iCloud data, thereby protecting it using end-to-end encryption. Additional data protected includes iCloud Backup, Photos, Notes, and more. 215 12.7.1.1 Enable Advanced Data Protection If you choose to turn off Advanced Data Protection later, your iCloud data will revert to the standard level of security.

 Go to Settings > [your name ] > iCloud , then tap Advanced Data Protection .  Tap Turn On Advanced Data Protection .  If you have not set up a Recovery Contact or Recovery Key, tap Account Recovery , tap S et Up Account Recovery , then follow the onscreen instructions. 216 12.7.1.2 Advanced Data Protection for iCloud You can turn on Advanced Data Protection on an iPhone with iOS 16.2, iPad with iPad OS 16.2, or a Mac with macOS 13.1. Turning on Advanced Data Protection on one device enables it for your entire account and all your compatible devices. 217 If one of your devices prevents you from turning on Advanced Data Protection, you can choose to remove that device from your Apple ID device list and try again. 218

TLP:GREEN