启用高级数据保护的 iCloud 不会删除您的文件。
我发现了一些关于iCloud的高级数据保护(ADP)的问题,这是苹果并未披露的:被删除的文件实际上从他们的服务器上并没有被真正移除。
测试:
我有一个5 Mbit/秒的上传连接。我将6GB的个人文件(音乐、视频、照片)复制到iCloud Drive。它们在15分钟内“上传”完成——这在我的带宽下是不可能的。这些文件早在很久以前就已经上传并被删除了。
为了验证,我检查了活动监视器:自启动以来,仅发送了3.42GB的数据,包括网页浏览。6GB的上传根本没有发生。
确认测试:
创建了一个包含随机数据的100MB文件:dd if=/dev/urandom of=randomfile.dat bs=1m count=100
上传到iCloud:花费了2-3分钟,活动监视器显示发送了122MB(正确)
从iCloud Drive中删除该文件
从“最近删除”中“永久删除”,并清空数据恢复中的任何文件。
重新上传相同的文件:在1秒内完成
活动监视器:几乎没有数据发送
苹果即使在“永久删除”后也保留了加密块。
一个月的测试(正在进行中):
我将保留这个随机文件,并计划在30天后尝试重新上传,以查看苹果是否会按任何时间表清除数据,还是无限期保留。
为什么这很重要:
ADP被宣传为让用户对其数据拥有独占控制权
“删除”和“永久删除”选项暗示数据会被移除
上传进度条显示虚假的“上传”状态以进行去重操作
用户无法验证苹果保留了哪些数据。
要尝试永久删除,必须禁用ADP的网络访问。
不清楚的是:
这是否适用于健康数据、密码和其他受ADP保护的内容?
苹果会保留“已删除”的加密块多久?
用户是否能真正删除他们的数据?
我并不是说加密技术很弱——可能没问题。但苹果在数据保留和ADP去重方面缺乏透明度令人担忧。“永久删除”应该意味着永久删除。
还有其他人注意到这种行为吗?在完成30天的保留测试后,我会更新这篇文章。
查看原文
I discovered something concerning about iCloud's Advanced Data Protection (ADP) that Apple doesn't disclose: deleted files are never actually removed from their servers.
The Test:
I have a 5 Mbit/sec upload connection. I copied 6GB of my personal files (music, videos, photos) to iCloud Drive. They "uploaded" in 15 minutes— which is impossible at my bandwidth. The files were previously uploaded a long ago and deleted since.
To verify, I checked Activity Monitor: only 3.42GB total data sent since boot, including web browsing. The 6GB upload never happened.<p>Confirmation Test:
Created a 100MB file with random data: dd if=/dev/urandom of=randomfile.dat bs=1m count=100
Uploaded to iCloud: took 2-3 minutes, Activity Monitor showed 122MB sent (correct)
Deleted the file from iCloud Drive
"Permanently deleted" from Recently Deleted and emptied any files from Data recovery.
Re-uploaded the identical file: completed in 1 second
Activity Monitor: essentially zero data sent<p>Apple kept the encrypted blocks even after "permanent deletion."<p>The month-long test (in progress):
I'm keeping the random file and will attempt to re-upload it after 30+ days to see if Apple purges data on any schedule, or retains it indefinitely.<p>Why this matters:
ADP is marketed as giving users exclusive control over their data
"Delete" and "Permanent Delete" options imply data removal
Upload progress bars show fake "uploading" status for deduplication operations
Users cannot verify what data Apple retains.
To attempt permanent deletion, you must disable ADP web access<p>What's unclear:
Does this apply to Health data, Passwords, and other ADP-protected content?
How long does Apple retain "deleted" encrypted blocks?
Can users ever truly remove their data?<p>I'm not claiming the encryption is weak—it's probably fine. But Apple's lack of transparency about data retention and deduplication with ADP is concerning. "Permanent delete" should mean permanent delete.
Has anyone else noticed this behavior? I'll update this post after completing the 30-day retention test.