I don’t get it. iMessage is Apple’s service. Why are they obliged to open it up for everyone to use? Would it be nice? Yes, of course. Should Apple be legally required to open up access to their service?
Technology
This is a most excellent place for technology news and articles.
Our Rules
- Follow the lemmy.world rules.
- Only tech related content.
- Be excellent to each another!
- Mod approved content bots can post up to 10 articles per day.
- Threads asking for personal tech support may be deleted.
- Politics threads may be removed.
- No memes allowed as posts, OK to post as comments.
- Only approved bots from the list below, to ask if your bot can be added please contact us.
- Check for duplicates before posting, duplicates may be removed
Approved Bots
The US Federal Trade Commission puts it this way:
a firm with market power cannot act to maintain or acquire a dominant position by excluding competitors or preventing new entry
It further explains that "market power" means:
the long term ability to raise price or exclude competitors
Emphasis added. What the government might argue in this case is that Apple has market power in the online message space because it preloads its own messaging app on its smartphones, which I believe enjoy a majority market share in the USA. One remedy the government could seek is requiring Apple to allow third parties to develop clients for its messaging service.
They didn't, someone made an App to interface with it. Trying to shut that down is anti-competitive.
It's also a huge security hole
How? It's not a MitM or anything like that, it's connecting exactly how an Apple device would connect. Everything is still E2EE, just one of the ends can now be an Android device.
Businesses are naturally anticompetitive. It may or may not violate antitrust law. The two main categories are collusion with competitors to prevent new competition, or if they seek to gain or maintain a monopoly via shady methods (just a monopoly itself isn’t illegal though). I doubt if Apple conspired with Google here and it would be a stretch to say they have a monopoly, so it seems like a pointless case to me.
It's not a public API. Hacking someone's private API is already against law - charging $$ for it moreso.
Ah, common misconception - hacking an API != creating a compatible program. ( reverse engineering)
Imagine a drill company has a special shape for its bits. Our law allows someone else to either.. make bits that can fit in that shape OR make their own drill that can accept those bits.
"BUT they copied!" - it doesn't have to be a copy to be compatible, and they don't even have to use the 'special shape' just be able to work with the special shape. The law does not allow for protections around that. Doing so would be by definition anti-competitive. Our anti competition laws or rather our IP protection laws are not intended in any way to 'ensure a monopoly'. The IP laws give a person a right to either keep something they do secret OR share that knowledge with the world so we all benefit, in exchange for a very limited monopoly.
Practically speaking, If I got the KFC Colonel to give me the list of 11 herbs and spices in a Poker game, and then started making my own delicious poultry that is totally cool. Likewise, If I figured out that all that was inside a Threadripper was blue smoke and started making my own blue smoke chips, the law is ok with that.
In this case roughly, Having a public facing endpoint. And then saying that the public can access that endpoint is cool Saying that only the public using the code I alone gave them -- well... that's not been litigated a lot, but all signs point to no.
It's like Bing saying its for Safari only, and suing people who accessed it using Chrome. It is a logical claim, but the law does not provide that kind of protection/enforcement.
tl;dr these concepts are old but being newly applied to fancy technology. The laws in place are clear in most cases. A car maker can not dictate what you put in the tank. FedEX and UPS can't charge you differently for shipping fiction books or medical journals or self published stories. And they'd probably get anti-trust scrutiny they even told you what brand/style of boxes you had to use.
They didn't hack it, they spoofed a device, they just tricked the systems around the api
That counts as unauthorized access in the eyes of the law. It's a private system and they did not have any agreements permitting them to use it as they wanted.
Quite literally the text of the Computer Fraud and Abuse act. Unauthorized access of computer systems can get you 20-years at club fed. Seems like some of these people need a history lesson.
Apple reverse-engineered Office to release iWork. So Apple isn't new to reverse-engineering others proprietary shit when it benefits them. something, something, history lesson, hmm…
I don't know laws in the US but my limited understanding in the case of Beeper is that its users are the ones that grant themselves unauthorized access to the Apple servers. Beeper is a tool that packages pypush to accomplish it. So Apple should sue all the Beeper users?
As an example, there are tons of tools to exploit vulnerable systems in Linux. Metasploit is a penetration testing software and can execute exploits on old unpatched systems. I don't think anyone is suing Metasploit developers for Computer Fraud and Abuse aCt. The users who use it are responsible for the access of unauthorized services and broken ToS.
If Apple thinks Beeper users are exploiting its servers, they should patch them (which they did).
Beeper did try to monetize it, so i'm not sure how it fairs but Beeper is not forcing anyone to gain unauthorized access. Beeper even welcomed Apple to audit Beeper mini code.
And I'm sure Beeper has a legal team that analyzed these scenarios better than anyone of us. And Apple has sued companies for less. They'd have done it the moment the app landed on appstore. They could have crushed it before gaining any attention.
Again, I have no idea how legal it is. I have both Apple and android devices and never use iMessage. But you gotta hand it to Beeper devs. That's some old school hacker shit and I'm here for it.
I guess we'll have to wait and see.
Yes, they should be legally required to open up access to their service. No more walled gardens that hold a large number of users hostage.
You can argue that they're unfairly using monopoly power. Same reason why MS was forced to allow windows to switch browsers.
I think the problem is that it's unnecessarily hardware locked. They shouldn't have to "open it up" insofar as anyone can access it from whatever app like beeper is doing. But it's only fair that they support other operating systems. They can still control it or even charge a fee to access it from other OSes.
I wish this kind of thing was more spotlighted when Palm and Windows Phone developers were trying to use Google API’s to make apps for their OS’s and got shut down at every turn, eventually killing off the Palm and WP because of device lock-in on apps.
I still miss what Palm could have been before Google bent them over a barrel with their massively anti-competitive bs.
Palm terrified them.
Palm apps were tiny, took trivial resources, and could provide a lot of what was done with new apps on Android. Dictionaries, calculators, games (I played monopoly on a Treo, it looked great). I watched Mp4 movies on a Treo.
Imagine Android with a Palm Subsystem so all those old Palm apps could run. It would've majorly slowed Android app adoption, perhaps even giving enough support to allow PalmOS architecture to develop into a competitor to Android.
When imessage was announced they planned to bring it to other platforms. That died when they realized how much of a lock in it was
If they're going to default message service to it then yes.
At the root of this issue is that Google never built a messaging service that could survive Google's management shuffle. I understand people want Apple to bend the knee, but this is not their problem. It's perfectly fine for them to intercede Beeper's reverse engineering.
If you're an Android user and you need a messaging app, Signal is 100% open source, secure, and it works on iOS too, so tell your friends!
And you assume your apple-using friends will listen to you? They are really a part of the problem at least. Google would need to create an app they would want to install by themselves, and this is not exactly easy, if possible at all. Google users are mostly fine with having many apps for communication, apple users are mostly not.
I am fully in the Apple ecosystem, including my phone, work laptop, personal laptop, and an Apple watch. I pretty much exclusively use telegram, and sometimes Discord, not iMessage— and that’s not a niche or unpopular opinion in my experience either. This is absolutely because Google can’t stick with one app or product long enough to gain any market share. Each time they have tried, it’s lasted barely a year or so before they killed it.
I think this is highly dependent on whether you’re still in high school or not. I recently switched to iPhone within the last couple years and everyone I know has an iPhone but almost none of them use iMessage. Facebook messenger, Telegram, Snapchat, hell even IG DMs. It’s all over the place. This sample of people is like 16-60 year olds too, I can’t even find a pattern.
More like senators are trying to make another show trial of BS they really have no plans to do anything about, and probably shouldn't be getting in the middle of, to make it seem like they are being productive in some way.
Answer me yes or no, If I stand in this room and use my phone can I send a message to your phone? — some senator to Tim Apple.
Why would they need to look into Apple's conduct here? Investigate Beeper for CFAA violations since they cracked into Apple's internal APIs and ignored large chunks of their ToS in the process.
Of course Apple is going to shut down unauthorized access to their messaging system. They'd lose all customer trust instantly if they didn't.
Reverse engineering for interoperability is legal, is it not? This is interoperability.
ToS have almost universally been shown to be unenforceable in court. I'm also not sure what the hell you mean by customers would lose trust. It's not as if they had access to information they shouldn't, all they did was reverse engineer the protocol. They still had to have an account and a login and they still only had access to the data that account should have. There's nothing to lose trust over the only thing beeper was doing was emulating being an iMessage client
Man... Some of the Apple fans in this thread are making me lose faith in humanity. They have no idea how technology works, but they are defending an objectively shitty behavior from the world's most wealthy corporation based on... I don't know... their feelings?