Yeah also Prism - hello? Over 10 years ago we discovered that US can just enter any US based company’s server and read anything they want unless it’s directly encrypted but for these tools to function they have to decrypt data server side so LLMs can read the contents. Which means your data is not private in any way shape or form.
These claims by Apple are absolutely meaningless smoke for the ignorant who just follow tech buzzwords.
Since Private Cloud Compute needs to be able to access the data in the user’s request to allow a large foundation model to fulfill it, complete end-to-end encryption is not an option. Instead, the PCC compute node must have technical enforcement for the privacy of user data during processing, and must be incapable of retaining user data after its duty cycle is complete.
We designed Private Cloud Compute to make several guarantees about the way it handles user data:
A user’s device sends data to PCC for the sole, exclusive purpose of fulfilling the user’s inference request. PCC uses that data only to perform the operations requested by the user.
User data stays on the PCC nodes that are processing the request only until the response is returned. PCC deletes the user’s data after fulfilling the request, and no user data is retained in any form after the response is returned.
User data is never available to Apple — even to staff with administrative access to the production service or hardware.
And what is that supposed to guarantee? Who ever owns the hardware of unencrypted data owns it. There’s no way to pass tokens to LLM without unencrypting the content. Whatever path is made to obfuscation is fundamentally incapable of security.
But data goes to the mothership anyway.
‘Bad actors’ can’t read your chatgpt conversations either, but OpenAI still does and can sell it.
Apple may better than Google, but I still don’t want my data there.
Yeah also Prism - hello? Over 10 years ago we discovered that US can just enter any US based company’s server and read anything they want unless it’s directly encrypted but for these tools to function they have to decrypt data server side so LLMs can read the contents. Which means your data is not private in any way shape or form.
These claims by Apple are absolutely meaningless smoke for the ignorant who just follow tech buzzwords.
Apple addressed that exact issue:
And what is that supposed to guarantee? Who ever owns the hardware of unencrypted data owns it. There’s no way to pass tokens to LLM without unencrypting the content. Whatever path is made to obfuscation is fundamentally incapable of security.