Last updated: 1 month ago
Apple's iCloud is a service that encapsulates everything related to Internet-centric data storage and cross-device sync for its platforms. It is available across every Apple device, with some Windows compatibility, and performs most tasks in the background.
● Encrypted storage and backup
● End-to-end encrypted communication with iMessage and FaceTime
● Storage options up to 2TB
● Collaboration and sync tools for apps
● Family Sharing for purchases and storage
Introduced on October 12, 2011, iCloud is Apple's cloud storage and sync service, which is used to provide users with an online storage facility for their files and documents. Functional across macOS, iOS, and iPadOS, files can be stored from across Apple's ecosystem of devices, as well as Windows desktops and within browsers on a web interface.
At its simplest, users can easily back up and store their iPhone data, including documents, music, and photographs on the service, allowing them to free up space on their mobile devices for other content. A synchronization feature allows for files altered on one device to be updated across other hardware owned by the user.
Beyond cloud-based storage, iCloud also provides several other services to users. Its infrastructure is used to provide photo sharing, as well as collaborative work through Apple's iWork suite, which can also be used from within a browser.
Cloud computing is also performed on iCloud. Processing for some apps and services is performed online instead of on a device. It is also used for the Find My app, used for location sharing and retrieving misplaced devices.
The following services utilize iCloud to perform tasks, syncing, and storage.
Users can back up their photographs to iCloud Photos, a feature where all of a user's images and videos are stored online and synchronized across all devices signed in to the same account. Images stored in iCloud at their original resolution, complete with metadata and any edits within the Photos app, and kept completely intact without any additional compression applied to the files.
Photographs can also be viewed through a web browser and shared with other people with a link.
Apple’s iCloud allows users to store images in the cloud. This enables devices with low storage capacity to store high-resolution photos on a server, rather than on-device. Users have the option to download the stored pictures to their device on-demand.
If a user stores many high-resolution photos and videos in iCloud, they will likely fill their iCloud account to capacity. Users can buy additional storage from Apple as needed.
With support for JPEG, MP4, and Apple's high-efficiency HEIF and HEVC codecs, the iCloud Photo Library can handle other types of files, including PNG images, GIF, TIF, and unprocessed RAW images generated by dedicated cameras and iPhone apps.
While iCloud Photos usually deals with all of a user's images, there is the option of using My Photo Stream. This feature uploads the last 30 days of photographs taken on account-linked devices, up to a maximum of 1,000 images. Images are shared across devices but are downloaded at a lower resolution on iPhone, iPad, and iPod touch while full-resolution images are available on Mac and PC.
Unlike iCloud Photos, My Photo Stream doesn't count against the iCloud data allowance, but users do still have to save images to their main library to keep them within the 30 days or risk losing the images after the time expires. My Photo Stream also does not retain any edits made to an image.
Files and iCloud Drive
A core function of iCloud, iCloud Drive is an online storage area for files and documents. Once uploaded to iCloud Drive, a user can view and download files to any device they've signed into. This feature allows a user to start working on one device and finish on another.
On a Mac or PC, the iCloud Drive acts as a normal folder, able to store and move files freely. Files and folders stored in the drive can be shared with other people, accessed from a web browser, and used with Apple's collaborative tools.
For iOS and iPadOS, the addition of the Files app gave iPhone and iPad users a way not only to see locally-stored and iCloud Drive files directly but also to interact with the folder structure. Files can be downloaded and be opened locally in the relevant app, with saved changes uploaded to iCloud Drive.
The Files app can also act as a central access point fo other cloud storage services, including Box, Dropbox, and OneDrive. Once authenticated in an app, users can see within each service's file container from the app, as well as interact with files stored on each.
On iPadOS, the Files app can access external storage, with connected USB flash drives, SD cards, and hard drives viewable in the app.
As well as sharing files and documents online, iCloud adds in several elements that let people work collaboratively. Pages, Numbers, and Keynote documents can be worked on by multiple people simultaneously, with up to 100 people able to view and edit a document at the same time.
The files can be worked on using a Mac or iOS or iPadOS device using the relevant Pages, Numbers, or Keynote apps. Users of other platforms, including Windows, can access the file within a browser on iCloud.com.
Users can invite others to collaborate by sharing an iCloud link of either the file or the iCloud Drive folder. Once shared, documents show how many people have the document open, with edits automatically synchronized and applied to all open instances.
For offline users, edits to a document while disconnected are saved for at least 30 days, and are automatically uploaded when a connection is reestablished.
Apple also includes an option to communicate with others within a document by using comments. Applying a comment to a document allows for details to be discussed with others, without directly affecting the document.
The document owner can stop sharing a document within the collaboration menu. Once sharing stops, it is removed from the iCloud Drive of all participants.
Formerly under the name of "Find My Friends" and "Find My iPhone," and later collected together in iOS 13, Find My is an app and service that combines some of the frequently-used location-based services offered through the power of iCloud. Fundamentally, the app allows users to find their friends and other Apple devices on a map.
The app functions chiefly under two areas: "People" and "Devices." Using People, users can share their iOS device's location with a contact for a limited period — an hour or until the end of the day — or can elect to share their position indefinitely.
The second area, Devices, deals with hardware the user owns, typically for the relocation of lost items. The last-reported location of iPhones, iPads, the Apple Watch, AirPods, and items like Macs are viewable on the map.
For some devices like an iPhone, users can make it play a sound to help find a lost device, as well as to get directions to where it was last seen.
Users can mark a device as lost, which will lock down the iPhone or iPad, displaying a phone number and a message of the user's choosing to encourage any finders to return it. A more extreme option of erasing the device remotely is also available, for instances where it is believed someone may try to gain access to onboard data.
The feature is also usable on iCloud.com.
It is possible to keep more than files and documents in sync across your Apple devices, as there are options to do the same with iCloud Contacts, Calendars, Notes, and Reminders. Syncing enables the same details to be mirrored across all of a user's devices, preventing users from having to search in multiple areas to find contact details, by managing them all in one place: iCloud.
Enabling synchronization using iCloud allows for contacts, calendars, notes, and any reminders stored in their respective apps to be copied to iCloud, then shared with other devices signed in to the same Apple ID. Changes made to the items are similarly saved to the iCloud version and synchronized.
The iCloud Keychain also syncs passwords. Account credentials are shared with all devices on the same Apple ID. This saves users from having to manually type in their passwords on a new iPad when setting it up, or for logging in on a second device that they don't usually use to access a service.
Messages In iCloud can be set up to synchronize conversations between multiple devices. The same message threads and attachments are available throughout a group of devices on the same Apple ID, with new messages appearing on all devices while attachment deletions take place across all hardware simultaneously.
For iPhone, iPad, and iPod touch owners who don't want to deal with using a Mac or PC to back up their data, there is the option of using iCloud Backup. As the name suggests, iCloud Backup provides an online backup of a user's important data and is available to download back to a device in the event of an emergency, such as being wiped clean of data.
The backup can automatically take place each day once set up, but only when the device is connected to power, locked, and connected to Wi-Fi.
Rather than backing up all of the data on a device, as possible with a conventional Mac or PC-based backup, iCloud Backup stores a subset of data.
The data iCloud Backup stores includes:
- App data
- Apple Watch backups
- Device settings
- Home screen and app organization
- iMessage, text, and MMS messages
- Photos and videos
- Apple service purchase history
- Visual Voicemail password
To avoid duplicated data, iCloud doesn't back up items that are already stored in iCloud. This includes synchronized contacts, Messages in iCloud, iCloud Photos, calendar appointments, and Voice Memos. Other items like Health data, call history, and iCloud Drive files are also not included.
Apple allows up to 6 people to belong to a group called a "family." When you add people to your family, a person must be the family organizer with other accounts added in.
This system allows for everyone to share their purchases across all accounts, including iTunes and App Store purchases. All accounts sync data over iCloud and gain some additional features.
The most direct connection to iCloud is shared storage. If you subscribe to a 200GB or 2TB plan, you share this data with your family in a pool.
Other services attached to Family Sharing use iCloud to sync data, like location sharing and Screen Time. All data shared across family sharing is encrypted and only accessible by the family organizer and the individuals producing the data.
When a family uses shared iCloud storage, they each get their own siloed storage area. No one, not even the organizer, can see what is stored in iCloud, only the person storing those files. The same goes for iCloud Photos stored while in a family.
Apple has long provided users with 5GB of storage for free, but that small amount of free storage has been heavily criticized. Many people run out of the 5GB quickly, with increasing photo and video quality being the biggest contributor.
Back when iCloud first introduced its 5GB tier, libraries were smaller and users were not shooting video in 4K. Even Apple’s website acknowledges that the lowest tier of iCloud is best used for syncing contacts and notes, not photos.
Any user who does not rely on other photo management services like Google Photos will likely want to upgrade to the second tier. For $1 a month you get 50GB of storage, which is much more useful for backups and small photo libraries.
Apple offers two more tiers above that, which are both included in family sharing. The $2.99 plan with 200GB is a great plan for an individual with a larger photo library, multiple device backups, and several gigabytes of files in iCloud Drive.
For those who have multiple family members or large photos and file libraries, there is a 2TB option. At $9.99 a month, it is the most expensive storage tier.
If you have a couple of decades of movies or run your business using cloud storage, then you’ll start to see some limitations. Apple does not offer any higher storage options like its competitors. The only way forward for users is to divide their files and photos between services or utilize local storage for some of their libraries.
iCloud Safety and Security
Mistrust of the cloud and all it offers is quite common, as major corporations have often proven that they cannot be trusted with our data. Even the most technologically savvy users sometimes struggle with the idea of storing their data on a company’s server rather than their own.
The more convenience a service offers, the less security it can provide to data. At least this is a common understanding, but Apple tries to be both convenient and secure.
All data stored on Apple servers are encrypted, and the most private data is further protected by end-to-end encryption. This means that your data, even if it is exposed, is utterly useless and unreadable without a key.
Apple holds the key to encrypted data in a separate storage location, and will only provide the key to those who authenticate as you with a user name, password, and two-factor authentication key. Authorities can request access to encrypted data with a very specific warrant, but even then, Apple will evaluate what should be shared and doesn’t hand everything they have over.
The end-to-end encrypted data cannot be accessed by anyone, including Apple or authorities, without your credentials. This has lead to major conflicts between the United States Government and Apple.
Apple implemented two-factor authentication, after dealing with several high profile password phishing events in 2014. The system uses two pieces of information to let a user sign into a trusted device or browser— a password and a 6-digit code.
The 6-digit code is sent to either a trusted device or to the user’s phone number. This is a big step up from other systems that rely on SMS and can be subject to man-in-the-middle attacks.
End-to-end encrypted data
The best way to remember what data is end-to-end encrypted on iCloud is by considering what information could do the most damage in the hands of a bad actor. Private conversations, health, access to your home, and your credit card are all easily used against you.
Apple has never had user data breached or stolen as a result of inherent security flaws. The "celebgate" attacks were a result of re-used passwords, and other social engineering issues.
Multiple countries, namely the United States and Australia, have attempted to pass legislation to cripple end-to-end encryption. Thus far, they have failed, as any changes to allow “the good guys” access would create vulnerabilities across the board.
Apple has considered end-to-end encrypting other services like iCloud backups but has decided that users who lose their passwords would be unable to recover data without an alternative.
iMessage and FaceTime
Messaging and video calls are some of our most private and intimate moments. Apple lead the industry for years with the only wide-spread consumer-focused encrypted messaging platform. Blackberry messaging offered a similar encryption level, but it was aimed at business users and never spread very far beyond that.
Apple never stores anything about FaceTime calls, and they occur over an end-to-end encrypted channel. Apple has no way to snoop into your calls, and can’t share any information with authorities as no information exists.
iMessage is a little more complicated. Like FaceTime, iMessage is encrypted end-to-end when in transit. At rest, iMessage stores the history of a conversation locally on-device, fully encrypted as well.
If you use iCloud backup, then your iMessage conversations stored on-device will be included in the backup. Apple stores backups with encryption in their servers, and has access to the key.
This means that while your conversations cannot be snooped in transit, Apple can provide authorities with your iMessage history if it is within the stored backup. You can set up messages to delete after 30 days or a year to keep this a bit more protected.
To prevent Apple from having access to your conversations at any point, you can always perform an encrypted local backup instead of using iCloud backup.
Health and Home Data
The health app is capable of storing all kinds of data, including medical records and medication doses. Such sensitive information can be used in many malicious ways, and therefore is heavily protected and given maximum user control.
As long as two-factor authentication is used, Apple will not be able to read health data in any circumstance. Apps that link with the Health app on iOS must receive explicit permission from the user to access the data.
HomeKit interactions are secured with encryption, and every device authorized to be used with HomeKit must have local encryption enabled as well. HomeKit Secure Video uses iCloud to store recorded video from security cameras, and stores this with end-to-end encryption.
The Keychain is a password manager that exists across all of your Apple devices. This service stores everything from WiFi passwords to credit card numbers.
You can use Keychain in tandem with other password services, or use it exclusively. Website and app passwords, contact information, and other sensitive information are kept here and is end-to-end encrypted.
Your location data contains everywhere you go and how long you spend there. While other services profit off of selling that data, Apple does not.
Apple Maps keeps track of your significant locations for use with machine learning on the device, and this information is stored with end-to-end encryption. To take this one step further, Apple provides directions using differential privacy, which doesn’t record your requests or location when processing directions for Apple Maps.
If authorities request location information from Apple, they cannot provide it, as it doesn’t exist outside of the device.
The encryption here is the same, but how the data is controlled changes. When data is end-to-end encrypted, only the user has the key to unlock and view data. In all other cases, the key is in the user’s hands, as well as Apple’s.
iCloud data that is stored on Apple’s servers with a key owned by Apple can be subpoenaed. With probable cause and a warrant, authorities can request specific data from Apple.
Some of this data may not be end-to-end encrypted, but Apple has taken extra precautions to ensure complex and specific warrants are needed to access such data.
Photos are encrypted on-device and in the cloud. Your iCloud Photo Library itself is end-to-end encrypted, much like iMessage. Taking a photo and storing it in the cloud is completely invisible to Apple, however, there is a similar exception.
Like iMessage, your photos are stored in the automatic backups you perform. Apple has access to these backups and can provide content in them to authorities with a proper warrant. To ensure no photos are ever accessible on Apple servers, you can use iCloud Photo Library and perform local encrypted backups.
Apple uses encryption across many of its apps and services but doesn’t deem them all necessary for end-to-end encryption. Everything that is synced between devices or an Apple server is encrypted on-device or in transit.
Third-party apps that store data using Apple’s CloudKit API, as well as apps like Reminders, Calendar, and Contacts all store data encrypted on Apple’s servers. Data that needs to be synced regularly but doesn’t need as strong protection is stored this way by default.
Apple doesn’t fully end-to-end encrypt everything, because users who lose their passwords would lose access to all of their data. Anything you want to be encrypted and stored in a way that cannot be subpoenaed will need to be stored locally or be managed by the user.
iCloud is a replacement for the preceding service MobileMe, a subscription service that offered many of the same features as the modern-day iCloud.
Originally known as iTools in 2000, it was rebranded as .Mac in 2002 before becoming MobileMe in 2008. Along with the name changes, Apple also altered the service from its Mac-focused offering to one that was multi-platform by the end of its life, with it compatible with iOS devices as well as Windows platforms.
Just like iCloud, MobileMe provided cloud storage and iDisk alongside address book and calendar synchronization, the MobileMe Gallery for sharing images and video, and iWeb Publish website creation, among other elements.
Apple discontinued selling subscriptions for MobileMe in February 2011, over half a year before the launch of its iCloud replacement. Apple encouraged users to migrate over from MobileMe to iCloud gradually and ceased access to the service on June 30, 2012.
Apple has slowly built onto iCloud since its release. The initial reception was good, as it corrected many of the issues found with MobileMe and strengthened the "magical" nature of being in the Apple ecosystem. Files, mail, calendars, and apps synced across devices with little issue.
This service was necessary as Apple pushed for a multi-device lifestyle across Mac, MacBook, iPad, and iPhone.
Other than service outages and syncing issues, the first couple of years of iCloud went without a hitch. The first major scandal to hit was in 2014 with a huge phishing scheme. The two years of phishing accounts lead to a huge dump of celebrity's private photos online, which everyone pointed to Apple as the fault in security.
In June of 2014, Apple rolled out two-step verification as an optional security feature for users. This system requires a password and a trusted device to access an account. Apple has since built out this feature to be more robust across its platforms.
Apple continued to improve iCloud through the years by adding a small quality of life changes. One feature called handoff landed in 2015, which would pass app data between Apple devices. Handoff displays an active app icon in the dock of an iPad or Mac if the app is being used on any other device.
Other uses for handoff is starting an email draft on one computer and finishing it on another with zero user input. Clipboard sharing across the cloud is one other useful feature that has resulted from handoff.
Collaboration tools were announced and released in 2016, allowing users to share iWork documents and work together on them in real-time using the new iCloud feature.
Also in 2016, AirPods were released with a new W1 chipset. This chip, along with the later released H1 chip, allows the earbuds to be added to a user's iCloud account for faster connection and device switching.
2018 introduced Messages in the cloud, which allows iMessages to be stored in iCloud and shared between devices. Previously messages could become out of sync, or attachments would easily fill up on-device storage. The feature was first announced as a tent pole feature of macOS High Sierra but was delayed multiple times as a result of issues with the feature's stability.