This section may contain information not important or relevant to the article's subject.(January 2023) |
Type of site | Single sign-on |
---|---|
Available in | English |
Owner | Apple Inc. |
Founder(s) | Steve Jobs |
Commercial | Indirectly |
Written in | English |
Apple ID is a user account by Apple for their devices and software. Apple IDs contain the user's personal data and settings. When an Apple ID is used to log in to an Apple device, the device will automatically use the data and settings associated with the Apple ID. [1]
An Apple ID account can be created on the Apple ID Web site. [2]
Users can change their passwords or personal information on the My Apple ID page by selecting the "Manage your account" link. Changes that a user makes to an Apple ID account, whilst they are using one Apple product, [3] are also recognized by other applications where the user uses the same Apple ID account (for example, the online Apple Store, iCloud, or Photos). [4] Apple will send a verification message to the email address provided, and the user is required to follow the URL included in the verification email to confirm the changes. After confirming the changes, users may still be asked to verify their information the next time they use their Apple ID to purchase, such as using the App Store.[ citation needed ]
Apple also allows users to change the name of an Apple ID, but users must contact Apple customer service to make such a change.[ citation needed ]
Users can use different Apple IDs for their store purchases and their iCloud storage and other uses. This includes many MobileMe users who have always had difficulties as they were forced to use more than one Apple ID, because on signing up to the MobileMe service a new Apple ID was automatically created using the me.com email address being created at the time, meaning users could not change their previous Apple ID email address to be their me.com email address, and it has always remained so. Apple does not permit different accounts to be merged. [5] However, if one account is disabled (in most cases, due to fraudulent transactions or other abusive activity or for security reasons), any other accounts associated with the primary account will also be disabled, and the user cannot create any new accounts until the affected account has been unlocked. [6]
An Apple ID is not required to place an order with Apple. Apple lets buyers place orders on its online store without an Apple ID by using the Guest Checkout Feature. An Apple ID and the Guest Checkout Feature both allow the customer to access order info such as invoices, check the order status, and track the shipping package. However, Apple IDs allow users to customize their Apple Online Store experiences. Users can save items they are interested in purchasing; save a cart if they are almost ready to place an order; save shipping and billing addresses and payment information to speed up the checkout process; use 1-Click ordering on Apple's website and check Apple Gift Card balances. [7]
iCloud allows users to store data such as music and iOS applications on remote computer servers [8] for download to multiple devices, such as iOS-based devices running iOS 5 or later, [9] and personal computers running OS X 10.7.2 Lion or later, or Microsoft Windows (Windows Vista service pack 2 or later). iCloud replaced Apple's MobileMe service, [10] acting as a data syncing center for email, contacts, calendars, bookmarks, notes, reminders (to-do lists), iWork documents, photos and other data. The service also allows users to wirelessly back up their iOS devices to iCloud instead of manually doing so using iTunes.
Every Apple ID comes with 5 GB of free storage. More storage is available with a subscription. [11]
An Apple ID is a valid email address, protected by a password set by the user of at least eight characters. [12] Apple will send a verification email to the email address the user provided, and the user is required to follow the URL included in the verification email to activate the account. It is possible to create an Apple ID without specifying a credit card. [13]
In March 2013, Apple launched two-factor authentication for Apple ID. The feature uses the Find My service to send a four-digit pin code to a trusted device associated with the Apple ID when the second verification step is required for authentication. [14]
On June 9, 2019, Apple unveiled a single sign-on provider built around Apple ID known as "Sign In with Apple". Based on OAuth 2.0 and OpenID Connect, it is designed as a privacy-focused alternative to other social login services, minimizing the amount of personal information sent to a service, and allowing the use of disposable email addresses forwarding to the user's Apple ID email. [15] [16]
An Apple ID may be disabled for security reasons if the password is entered incorrectly multiple times. The user will be warned with a message when the account has been disabled. [17] Apple IDs and passwords can be retrieved by answering account security questions on iForgot or by resetting from a trusted device with iCloud enabled and an unlock passcode set. [17] [18] For security reasons, if Recovery Key or Two-Step Verification (not Two-Factor Authentication) is turned on, Apple will not reset the password for an Apple ID account. [19] To reset the password when these security features are enabled, both the Recovery Key and at least one trusted device is required. [20]
Another error is "Your Apple ID has been disabled" without specific disclosure of a reason. The cause of this suspension is most likely due to a violation of the Apple Media Services Terms and Conditions (i.e., due to scams and other fraudulent activities) and resetting one's password does not clear it. [21] It has been reported as occurring on iOS devices as well as on Macs and PCs. One can request a review of an Apple ID by contacting iTunes Store support at www.apple.com/support/itunes. As of August 2021, due to the accuracy of the system, the decisions to disable Apple IDs are rarely overturned, as the likelihood that the system would incorrectly disable any given Apple ID is less than one in one trillion per year (most likely due to CSAM detection, a safety feature that Apple had proposed but was later shelved). [22]
In both of the above cases, the user's profile will not be visible to anyone on iMessage or FaceTime, and they will not be able to sign in. The issue needs to be resolved within a set period (approximately 14–30 days in most cases). If too much time has passed since the Apple ID has been disabled, it will be permanently disabled and the user can no longer unlock it nor create any new Apple IDs.
Every iCloud automatically has standard data protection. All data is encrypted, and encryption keys are stored securely in Apple data centers to assist in case of account recovery. Only certain data is end-to-end encrypted, including iCloud Mail, Photos, and health data. In total, fourteen services are end-to-end encrypted.
Additionally, Apple offers Advanced Data Protection for iCloud, which is targeted at an audience of politicians, journalists, and other people who have important data on their iCloud accounts. With this, twenty-three services are end-to-end encrypted. If one loses access to an account with Advanced Data Protection, it is more difficult to recover the account. [23]
Hushmail is an encrypted proprietary web-based email service offering PGP-encrypted e-mail and vanity domain service. Hushmail uses OpenPGP standards. If public encryption keys are available to both recipient and sender, Hushmail can convey authenticated, encrypted messages in both directions. For recipients for whom no public key is available, Hushmail will allow a message to be encrypted by a password and stored for pickup by the recipient, or the message can be sent in cleartext. In July 2016, the company launched an iOS app that offers end-to-end encryption and full integration with the webmail settings. The company is located in Vancouver, British Columbia, Canada.
FileVault is a disk encryption program in Mac OS X 10.3 Panther (2003) and later. It performs on-the-fly encryption with volumes on Mac computers.
Single sign-on (SSO) is an authentication scheme that allows a user to log in with a single ID to any of several related, yet independent, software systems.
A one-time password (OTP), also known as a one-time PIN, one-time authorization code (OTAC) or dynamic password, is a password that is valid for only one login session or transaction, on a computer system or other digital device. OTPs avoid several shortcomings that are associated with traditional (static) password-based authentication; a number of implementations also incorporate two-factor authentication by ensuring that the one-time password requires access to something a person has as well as something a person knows.
Keychain is the password management system in macOS, developed by Apple. It was introduced with Mac OS 8.6, and has been included in all subsequent versions of the operating system, now known as macOS. A Keychain can contain various types of data: passwords, private keys, certificates, and secure notes.
The following tables compare general and technical information for a number of notable webmail providers who offer a web interface in English.
A Google Account is a user account that is required for access, authentication and authorization to certain online Google services. It is also often used as single sign-on for third party services.
Password fatigue is the feeling experienced by many people who are required to remember an excessive number of passwords as part of their daily routine, such as to log in to a computer at work, undo a bicycle lock or conduct banking from an automated teller machine. The concept is also known as password chaos, or more broadly as identity chaos.
MobileMe is a discontinued subscription-based collection of online services and software offered by Apple Inc. All services were gradually transitioned to and eventually replaced by the free iCloud, and MobileMe ceased on June 30, 2012, with transfers to iCloud being available until July 31, 2012, or data being available for download until that date, when the site finally closed completely. On that date all data was deleted, and email addresses of accounts not transferred to iCloud were marked as unused.
LastPass is a password manager application. The standard version of LastPass comes with a web interface, but also includes plugins for various web browsers and apps for many smartphones. It also includes support for bookmarklets.
Multi-factor authentication is an electronic authentication method in which a user is granted access to a website or application only after successfully presenting two or more pieces of evidence to an authentication mechanism. MFA protects personal data—which may include personal identification or financial assets—from being accessed by an unauthorized third party that may have been able to discover, for example, a single password.
iCloud is a cloud service developed by Apple Inc. Launched on October 12, 2011, iCloud enables users to store and sync data across devices, including Apple Mail, Apple Calendar, Apple Photos, Apple Notes, contacts, settings, backups, and files, to collaborate with other users, and track assets through Find My. It is built into iOS, iPadOS, watchOS, tvOS, macOS, and visionOS. iCloud may additionally be accessed through a limited web interface and Windows application.
Apple Wallet is a digital wallet developed by Apple Inc. and included with iOS and watchOS that allows users to store Wallet passes such as coupons, boarding passes, student ID cards, government ID cards, business credentials, resort passes, car keys, home keys, event tickets, public transportation passes, store cards, and – starting with iOS 8.1 – credit cards, and debit cards for use via Apple Pay.
Touch ID is an electronic fingerprint recognition feature designed and released by Apple Inc. that allows users to unlock devices, make purchases in the various Apple digital media stores, and authenticate Apple Pay online or in apps. It can also be used to lock and unlock password-protected notes on iPhone and iPad. Touch ID was first introduced in iPhones with the iPhone 5s in 2013. In 2015, Apple introduced a faster second-generation Touch ID in the iPhone 6s; a year later in 2016, it made its laptop debut in the MacBook Pro integrated on the right side of the Touch Bar. Touch ID has been used on all iPads since the iPad Air 2 was introduced in 2014. In MacBooks, each user account can have up to three fingerprints, and a total of five fingerprints across the system. Fingerprint information is stored locally in a secure enclave on the Apple A7 and later chips, not in the cloud, a design choice intended to secure fingerprint information from users or malicious attackers.
Proton Mail is a Swiss end-to-end encrypted email service founded in 2013 headquartered in Plan-les-Ouates, Switzerland. It uses client-side encryption to protect email content and user data before they are sent to Proton Mail servers, unlike other common email providers such as Gmail and Outlook.com. The service can be accessed through a webmail client, the Tor network, Windows, macOS and Linux (beta) desktop apps and iOS and Android apps.
Threema is a paid cross-platform encrypted instant messaging app developed by Threema GmbH in Switzerland and launched in 2012. The service operates on a decentralized architecture and offers end-to-end encryption. Users can make voice and video calls, send photos, files, and voice notes, share locations, and make groups. Unlike many other popular secure messaging apps, Threema does not require phone numbers or email addresses for registration, only a one-time purchase that can be paid via an app store or anonymously with Bitcoin or cash.
Bitwarden is a freemium open-source password management service that stores sensitive information, such as website credentials, in an encrypted vault. The platform offers a variety of client applications, including a web interface, desktop applications, browser extensions, mobile apps, and a command-line interface. Bitwarden offers a free US or European cloud-hosted service as well as the ability to self-host.
Smart-ID is an electronic authentication tool developed by SK ID Solutions, an Estonian company. Users can log in to various electronic services and sign documents with an electronic signature.
Microsoft Autofill is a password manager developed by Microsoft. It supports multiple platforms such as Android, iOS, and Google Chrome browser. It is a part of Microsoft Authenticator app in Android and iOS, and a browser extension on Google Chrome. It stores users' passwords under the user's Microsoft Account. It can import passwords from Chrome and some popular password managers or from a CSV file. In Microsoft Authenticator app, it requires multi-factor authentication to sign in which provides an additional layer of security. The passwords are encrypted both on the device and the cloud.
The iOS operating system utilizes many security features in both hardware and software, from the boot process to biometrics.