Consumer Rights Wiki

Remote disabling: Difference between revisions

← Older edit
VisualWikitext
Reform (talk | contribs)
confirmed
240 edits
Reduced uncited parts slightly and compressed the wordy parts to increase cohesion. At last, some more citation needed markers have been added. Please help with citations!
Tempo123 (talk | contribs)
confirmed
354 edits
References: Archived
 
(2 intermediate revisions by one other user not shown)
Line 8: Line 8:
Apple employs several systems to control device authorization:
Apple employs several systems to control device authorization:


'''Activation lock:''' Part of Apple's "Find My" system, Activation Lock ties devices to an Apple ID. If a device is reported lost or stolen, it can be remotely locked, making it unusable even after a factory reset. This requires the original owner's Apple ID and password to reactivate.<ref>NWIDA (April 12, 2024). [https://nwida.org/what-is-apple-activation-lock-and-should-repair-shops-be-worried#:~:text=Apple%20will%20also%20extend%20its,stolen%20iPhone%20from%20being%20reactivated "What is Apple Activation Lock and should repair shops be worried?"]. ''NWIDA''. Retrieved March 25, 2026.</ref><ref name=":0">Apple (September 18, 2024). [https://support.apple.com/guide/security/activation-lock-security-sec0f8dfd030/web "Activation Lock security"]. ''Apple Support''. Retrieved March 25, 2026.</ref>
'''Activation lock:''' Part of Apple's "Find My" system, Activation Lock ties devices to an Apple ID. If a device is reported lost or stolen, it can be remotely locked, making it unusable even after a factory reset. This requires the original owner's Apple ID and password to reactivate.<ref>NWIDA (April 12, 2024). [https://nwida.org/what-is-apple-activation-lock-and-should-repair-shops-be-worried#:~:text=Apple%20will%20also%20extend%20its,stolen%20iPhone%20from%20being%20reactivated "What is Apple Activation Lock and should repair shops be worried?"]. ''NWIDA''. Retrieved March 25, 2026. ([https://web.archive.org/web/20251109102436/https://nwida.org/what-is-apple-activation-lock-and-should-repair-shops-be-worried Archived])</ref><ref name=":0">Apple (September 18, 2024). [https://support.apple.com/guide/security/activation-lock-security-sec0f8dfd030/web "Activation Lock security"]. ''Apple Support''. Retrieved March 25, 2026. ([https://web.archive.org/web/20260220120250/https://support.apple.com/en-gb/guide/security/sec0f8dfd030/web Archived])</ref>


'''[[iCloud]] activation:''' macOS devices (MacBooks, iMacs) require periodic authentication with Apple's servers. If a device is flagged in Apple's systems it may be locked out during these server checks.<ref name=":0" /><ref>Hardwick, Tim (January 27, 2023). [https://9to5mac.com/2023/01/27/2020-macs-landfill/ "Two-year-old Macs are being sent to the landfill because of Activation Lock"]. ''9to5Mac''. Retrieved March 25, 2026.</ref>
'''[[iCloud]] activation:''' macOS devices (MacBooks, iMacs) require periodic authentication with Apple's servers. If a device is flagged in Apple's systems it may be locked out during these server checks.<ref name=":0" /><ref>Hardwick, Tim (January 27, 2023). [https://9to5mac.com/2023/01/27/2020-macs-landfill/ "Two-year-old Macs are being sent to the landfill because of Activation Lock"]. ''9to5Mac''. Retrieved March 25, 2026. ([https://web.archive.org/web/20250822182040/https://9to5mac.com/2023/01/27/2020-macs-landfill/ Archived])</ref>


'''T2 and Apple silicon security:''' Modern MacBooks with T2 chips or Apple Silicon (M1, M2, M3 processors) include firmware-level security that communicates with Apple servers during boot and recovery operations. This can render the device unusable if Apple's servers indicate the device should be locked.<ref>Apple (September 18, 2024). [https://support.apple.com/guide/security/the-secure-enclave-sec59b0b31ff/web "The Secure Enclave"]. ''Apple Support''. Retrieved March 25, 2026.</ref>
'''T2 and Apple silicon security:''' Modern MacBooks with T2 chips or Apple Silicon (M1, M2, M3 processors) include firmware-level security that communicates with Apple servers during boot and recovery operations. This can render the device unusable if Apple's servers indicate the device should be locked.<ref>Apple (September 18, 2024). [https://support.apple.com/guide/security/the-secure-enclave-sec59b0b31ff/web "The Secure Enclave"]. ''Apple Support''. Retrieved March 25, 2026. ([https://web.archive.org/web/20260110131641/https://support.apple.com/en-gb/guide/security/sec59b0b31ff/web Archived])</ref>


'''Mobile device management (MDM):''' Organizations using Apple Business Manager can remotely manage, lock, or wipe devices. If purchased through corporate or educational programs, devices may have MDM profiles that persist even after resale.<ref>Apple (March 1, 2024). [https://support.apple.com/guide/deployment/lock-and-locate-devices-depb980a0be4/web "Lock and locate devices"]. ''Apple Support''. Retrieved March 25, 2026.</ref><ref>Apple (September 16, 2024). [https://support.apple.com/guide/deployment/erase-devices-dep0a819891e/web "Erase devices"]. ''Apple Support''. Retrieved March 25, 2026.</ref>
'''Mobile device management (MDM):''' Organizations using Apple Business Manager can remotely manage, lock, or wipe devices. If purchased through corporate or educational programs, devices may have MDM profiles that persist even after resale.<ref>Apple (March 1, 2024). [https://support.apple.com/guide/deployment/lock-and-locate-devices-depb980a0be4/web "Lock and locate devices"]. ''Apple Support''. Retrieved March 25, 2026. ([https://web.archive.org/web/20251022232018/https://support.apple.com/en-gb/guide/deployment/depb980a0be4/web Archived])</ref><ref>Apple (September 16, 2024). [https://support.apple.com/guide/deployment/erase-devices-dep0a819891e/web "Erase devices"]. ''Apple Support''. Retrieved March 25, 2026. ([https://web.archive.org/web/20251112222301/https://support.apple.com/en-gb/guide/deployment/dep0a819891e/web Archived])</ref>


===Microsoft's mechanisms===
===Microsoft's mechanisms===
Line 32: Line 32:


===Loss of ownership rights===
===Loss of ownership rights===
The manufacturer's ability to remotely disable a device conflicts with traditional concepts of ownership where buying a product grants full control over it. If users lose access to their account through forgotten passwords, account suspensions, security flags, or company policy change, they may be locked out of devices they own. {{Citation needed|date=26 Mar 2026}} Purchasers of used laptops may discover that they are locked to previous owners' accounts or organizational management systems. Despite legal ownership, they may be unusable. Sellers are sometimes unaware of activation locks, creating disputes and losses. {{Citation needed|date=26 Mar 2026}} Furthermore, the process to appeal a decision that disabled a user's device is often unsuccessful, unclear or slow.{{Citation needed|date=26 Mar 2026}}
The manufacturer's ability to remotely disable a device conflicts with traditional concepts of ownership where buying a product grants full control over it. If users lose access to their account through forgotten passwords, account suspensions, security flags, or company policy change, they may be locked out of devices they own. {{Citation needed|date=26 Mar 2026}} Organizations use settings on employee or student devices to remotely control them but forget to remove it. Which means that the user may find that their personal device remained locked to institutional systems without clear removal processes.{{Citation needed|date=26 Mar 2026}} Despite legal ownership, they may be unusable. Sellers are sometimes unaware of activation locks, creating disputes and losses. {{Citation needed|date=26 Mar 2026}} Furthermore, the process to appeal a decision that disabled a user's device is often unsuccessful, unclear or slow.{{Citation needed|date=26 Mar 2026}}  


==== Privacy and takeover concerns ====
====Privacy and takeover concerns====
For the possibility of remote disabling to exist, there needs to be a constant stream of data between the device and company servers. This raises concerns about what data is collected, and how much your location is tracked.{{Citation needed|date=26 Mar 2026}} For accounts specifically, data collection requirements can cause automated fraud detection systems to incorrectly flag and disable the accounts of legitimate users with little human oversight. {{Citation needed|date=26 Mar 2026}} The company servers also become a central bottleneck that a malicious government or police department can demand control over.
For the possibility of remote disabling to exist, there needs to be a constant stream of data between the device and company servers. This raises concerns about what data is collected, and how much your location is tracked.{{Citation needed|date=26 Mar 2026}} For accounts specifically, data collection requirements can cause automated fraud detection systems to incorrectly flag and disable the accounts of legitimate users with little human oversight. {{Citation needed|date=26 Mar 2026}} The company servers also become a central bottleneck that a malicious government or police department can demand control over.


===Business and educational dependencies===
===Business and educational dependencies===
Organizations can remotely control employee or student devices, but this control may outlast employment or enrollment. Former employees or students may find personal devices remain locked to institutional systems without clear removal processes.


==Examples==
==Examples==
Retrieved from "https://consumerrights.wiki/w/Remote_disabling"