View in English

  • Apple 开发者
    • 入门汇总

    探索“入门汇总”

    • 概览
    • 学习
    • Apple Developer Program

    及时了解最新动态

    • 最新动态
    • 开发者你好
    • 平台

    探索“平台”

    • Apple 平台
    • iOS
    • iPadOS
    • macOS
    • Apple tvOS
    • visionOS
    • watchOS
    • App Store

    精选

    • 设计
    • 分发
    • 游戏
    • 配件
    • 网页
    • Home
    • CarPlay 车载
    • 技术

    探索“技术”

    • 概览
    • Xcode
    • Swift
    • SwiftUI

    精选

    • 辅助功能
    • AI 与机器学习
    • App Intents
    • Apple 智能
    • 游戏
    • 安全性
    • Xcode Cloud
    • 社区

    探索“社区”

    • 概览
    • “与 Apple 会面交流”活动
    • 社区主导的活动
    • 开发者论坛
    • 开源

    精选

    • WWDC
    • Swift Student Challenge
    • 开发者故事
    • App Store 大奖
    • Apple 设计大奖
    • Apple Developer Centers
    • 文档

    探索“文档”

    • 文档库
    • 技术概述
    • 示例代码
    • 《人机界面指南》
    • 视频

    发布说明

    • 精选更新
    • iOS
    • iPadOS
    • macOS
    • watchOS
    • visionOS
    • Apple tvOS
    • Xcode
    • 下载

    探索“下载”

    • 所有下载
    • 操作系统
    • 应用程序
    • 设计资源

    精选

    • Xcode
    • TestFlight
    • 字体
    • SF Symbols
    • Icon Composer
    • 支持

    探索“支持”

    • 概览
    • 帮助指南
    • 开发者论坛
    • “反馈助理”
    • 联系我们

    精选

    • 《开发者账户帮助》
    • 《App 审核指南》
    • 《App Store Connect 帮助》
    • 即将实行的要求
    • 协议和准则
    • 系统状态
  • 快速链接

    • 活动
    • 新闻
    • 论坛
    • 示例代码
    • 视频
 

视频

打开菜单 关闭菜单
  • 专题
  • 所有视频
  • 关于

更多视频

  • 简介
  • 概要
  • 隐私和安全小组实验室

    参加我们的线上活动,与 Apple 工程师和设计师一起深入探索 WWDC26。在这个以隐私和安全为主题的活动中,你可以提出问题、获取建议,并实时关注围绕大会一周的相关重磅发布展开的精彩讨论。活动语言为英语。

    章节

    • 0:00:00 - Introduction
    • 0:02:48 - How is Apple ensuring that models are not hijacked through prompt injection techniques?
    • 0:05:04 - When my app sends user data to Private Cloud Compute or to a third-party model (e.g. Anthropic, Google) via the LanguageModel protocol, what happens to that data and what must I tell users?
    • 0:08:15 - What distinction does Apple draw between data I 'collect' versus data a third-party processor handles on my behalf, for features that send voice/photos out purely for processing?
    • 0:09:40 - AI models don't always do what you expect. What security risks come with the new agentic coding features in Xcode, and what are best practices to mitigate them?
    • 0:11:06 - What is the core architecture behind Private Cloud Compute, and how does Apple mathematically ensure no one can see the data — how do we verify there are no hidden flaws?
    • 0:17:23 - Are there new features to audit the privacy/security of my own app? I use SwiftData with CloudKit so users own their data — how can I audit that?
    • 0:22:24 - If we're starting to develop for Apple platforms, what main tools or frameworks should we focus on for privacy and security?
    • 0:28:06 - If a user stores highly personal journal entries in SwiftData, what are Apple's recommended approaches for protecting that data while still enabling search and synchronization?
    • 0:31:28 - With Xcode AI coding features, can Xcode run inside a VM on an air-gapped Mac, walled off from the internet, to improve security and privacy?
    • 0:32:23 - How does the new Siri AI ensure privacy and security (e.g. avoiding sharing private context with apps) — is it a combination of sandboxing, TCC, and more?
    • 0:37:55 - Will Siri AI have a new configurable policy in an MDM solution when released?
    • 0:39:02 - Are there new enhancements to Safari's Intelligent Tracking Prevention on the new OS?
    • 0:40:05 - How do you convey that your app is secure and privacy-preserving without it coming across as snake oil or unverifiable marketing — how do you make trust observable?
    • 0:48:14 - As a cybersecurity student, what Apple frameworks or security concepts should I learn first to build a foundation relevant to both app/platform security and the broader field?
    • 0:50:44 - Passkeys reduce password risk but introduce credential-lifecycle problems. How is Apple handling stale, expired, or revoked passkeys in the Passwords app, and will cleanup be surfaced to users?
    • 0:51:36 - What are best practices for protecting sensitive data in memory on macOS (passwords, tokens, keys) — should secrets be encrypted while in RAM, or are platform protections sufficient?
    • 0:55:49 - What approach do you take when balancing privacy with collecting telemetry that's useful for development?

    资源

      • 高清视频
      • 标清视频
  • 搜索此视频…
    • 0:00:00 - Introduction
    • Engineers from the privacy and security teams introduce themselves and set up a session covering agentic AI security risks, Private Cloud Compute, App Privacy Nutrition Labels, data protection and CloudKit encryption, passkeys, and secure-by-design development.

    • 0:02:48 - How is Apple ensuring that models are not hijacked through prompt injection techniques?
    • Agentic technologies introduce a new category of risk, notably indirect prompt injection — where malicious instructions are hidden in content the model processes rather than typed by the user. Apple designs these features secure-by-design, constraining what the model is allowed to do and treating untrusted content as data, not instructions, to limit what an injected prompt can achieve.

    • 0:05:04 - When my app sends user data to Private Cloud Compute or to a third-party model (e.g. Anthropic, Google) via the LanguageModel protocol, what happens to that data and what must I tell users?
    • Private Cloud Compute's guarantees — no retention, no access, verifiable — apply only to Apple's PCC path. When you route data to a third-party provider through the protocol, those guarantees don't carry over; that provider's own data handling governs it. Disclose third-party processing to users and reflect it in your privacy practices, since you can't promise PCC-level protections for data you send elsewhere.

    • 0:08:15 - What distinction does Apple draw between data I 'collect' versus data a third-party processor handles on my behalf, for features that send voice/photos out purely for processing?
    • This maps onto App Privacy Nutrition Labels, which let users compare apps' data practices at a glance. Data sent to a third party purely for processing on your behalf — not retained or used for their own purposes — is treated differently from data you collect. Understand each service's role and declare your practices accordingly so the nutrition label accurately reflects what happens to user data.

    • 0:09:40 - AI models don't always do what you expect. What security risks come with the new agentic coding features in Xcode, and what are best practices to mitigate them?
    • Like Siri and Safari's AI features, Xcode's agentic features are built secure-by-design with the prompt-injection risks in mind. Xcode adds mitigations such as allow-listing the common tools the agent may run and permission prompting, so the agent can't take sensitive actions freely. Review what tools you grant, keep the agent scoped to what it needs, and don't blindly trust generated actions.

    • 0:11:06 - What is the core architecture behind Private Cloud Compute, and how does Apple mathematically ensure no one can see the data — how do we verify there are no hidden flaws?
    • Read the in-depth PCC Security Guide on apple.com, which documents the architecture and guarantees at several levels of detail. PCC is designed so that user data is used only to fulfill the request and is not accessible to Apple or anyone else, with the guarantees made verifiable — the security guide is the authoritative place to examine the design and check the claims.

    • 0:17:23 - Are there new features to audit the privacy/security of my own app? I use SwiftData with CloudKit so users own their data — how can I audit that?
    • SwiftData with CloudKit is a strong foundation because data syncs through the user's own iCloud with encryption. A newly practical audit tool is AI itself: point a model at your code and ask it to enumerate your privacy and security guarantees and where they might break. Combine that with reviewing your data protection classes and encryption settings to confirm the guarantees hold.

    • 0:22:24 - If we're starting to develop for Apple platforms, what main tools or frameworks should we focus on for privacy and security?
    • For privacy, lean on CloudKit for syncing data within the user's own account, Keychain for secrets, and design so users own their data. For security, use CryptoKit for cryptography and encourage passkeys over passwords. These frameworks are fundamental building blocks that give you strong protections without rolling your own.

    • 0:28:06 - If a user stores highly personal journal entries in SwiftData, what are Apple's recommended approaches for protecting that data while still enabling search and synchronization?
    • Use data protection classes: when data is local (or in Keychain), create a key to encrypt it and set an appropriate data protection class so it's inaccessible when the device is locked. For sync, CloudKit offers encryption so sensitive fields stay protected in transit and at rest, while you keep the searchable structure you need on device.

    • 0:31:28 - With Xcode AI coding features, can Xcode run inside a VM on an air-gapped Mac, walled off from the internet, to improve security and privacy?
    • The existing code-completion features are entirely on device and work offline, so they're fine air-gapped. Features that integrate external agents like Claude Code or OpenAI's Codex inevitably need internet access, so those won't work offline. It varies by feature — on-device completion works walled off, cloud-backed agents do not.

    • 0:32:23 - How does the new Siri AI ensure privacy and security (e.g. avoiding sharing private context with apps) — is it a combination of sandboxing, TCC, and more?
    • Siri does as much as possible on device, and when it needs larger models it calls Private Cloud Compute, which extends the on-device privacy guarantees to the server. That combination — on-device processing plus PCC for heavier work — is what lets Siri use your personal context powerfully while keeping that information private, alongside the platform's sandboxing and permission systems.

    • 0:37:55 - Will Siri AI have a new configurable policy in an MDM solution when released?
    • Apple Intelligence and Siri features are manageable through MDM, so organizations can configure and restrict these capabilities via their device-management policies as the features roll out. Check the MDM configuration options for the specific controls available to your deployment.

    • 0:39:02 - Are there new enhancements to Safari's Intelligent Tracking Prevention on the new OS?
    • ITP is a long-evolving technology Apple has invested in for years and continues to advance. There were no specific new ITP features to highlight this year, but it remains a priority area of ongoing investment; the WebKit resources are the place to learn more about how it protects users from cross-site tracking.

    • 0:40:05 - How do you convey that your app is secure and privacy-preserving without it coming across as snake oil or unverifiable marketing — how do you make trust observable?
    • Make trust verifiable rather than asserted. App Privacy Nutrition Labels let users see, before downloading, exactly what data an app collects and whether it's linked to them — an at-a-glance, standardized signal. Back claims with observable facts (what you collect, how it's used, what stays on device) instead of marketing language.

    • 0:48:14 - As a cybersecurity student, what Apple frameworks or security concepts should I learn first to build a foundation relevant to both app/platform security and the broader field?
    • Start with the Apple Platform Security Guide, which goes deeper than standard documentation on how the OSes are secured. Build from there into the security frameworks (CryptoKit, Keychain, data protection). Apple also hires for security and privacy roles, so this foundation is directly relevant to the field.

    • 0:50:44 - Passkeys reduce password risk but introduce credential-lifecycle problems. How is Apple handling stale, expired, or revoked passkeys in the Passwords app, and will cleanup be surfaced to users?
    • There's a new Signal API through which a relying party's app or website can inform the system that credentials have changed and need updating — addressing stale, revoked, or invalid passkeys. This is part of the broader passkey standard Apple participates in, so the lifecycle cleanup is being handled in a standardized way.

    • 0:51:36 - What are best practices for protecting sensitive data in memory on macOS (passwords, tokens, keys) — should secrets be encrypted while in RAM, or are platform protections sufficient?
    • Start with Hardened Runtime on macOS — strongly recommended for any privacy- or security-sensitive app. It prevents other processes from reading your app's memory and blocks the common attacks (spinning up a thread to read process memory, or attaching a debugger). Before reaching for encryption, ask whether destruction is the better answer: if a secret like a token only needs to live briefly, use it and then destroy it rather than encrypting it in RAM — long-lived in-memory encryption is really DRM territory, not general security. For keys and other sensitive values, use CryptoKit, which zeroizes the memory backing those keys (rolling your own can't guarantee the Swift runtime will). And you can bind a key to the device's Secure Enclave so that even if your app, process, or the device is compromised, the key can't be exported off the device — with an attestation interface to prove it's Enclave-held.

    • 0:55:49 - What approach do you take when balancing privacy with collecting telemetry that's useful for development?
    • The guiding principle is great features and great privacy — both, not a trade-off of one for the other. Achieving that often takes extra engineering: collect the minimum you need, prefer privacy-preserving techniques (aggregation, on-device processing, de-identification), and design telemetry so it informs development without exposing individual users.

开发者页脚

  • 视频
  • WWDC26
  • 隐私和安全小组实验室
  • 打开菜单 关闭菜单
    • iOS
    • iPadOS
    • macOS
    • Apple tvOS
    • visionOS
    • watchOS
    • App Store
    打开菜单 关闭菜单
    • Swift
    • SwiftUI
    • Swift Playground
    • TestFlight
    • Xcode
    • Xcode Cloud
    • Icon Composer
    • SF Symbols
    打开菜单 关闭菜单
    • 辅助功能
    • 配件
    • AI 与机器学习
    • Apple 智能
    • 音频与视频
    • 增强现实
    • 商务
    • 设计
    • 分发
    • 教育
    • 游戏
    • 健康与健身
    • App 内购买项目
    • 本地化
    • 地图与位置
    • 安全性
    • Safari 浏览器与网页
    打开菜单 关闭菜单
    • 文档
    • 下载
    • 示例代码
    • 视频
    • 文档归档
    打开菜单 关闭菜单
    • 帮助指南与文章
    • 联系我们
    • 论坛
    • 反馈与错误报告
    • 系统状态
    打开菜单 关闭菜单
    • Apple 开发者
    • App Store Connect
    • 证书、标识符和描述文件
    • “反馈助理”
    打开菜单 关闭菜单
    • Apple Developer Program
    • Apple Developer Enterprise Program
    • App Store Small Business Program
    • MFi Program
    • Mini Apps Partner Program
    • News Partner Program
    • Video Partner Program
    • 安全赏金计划
    • Security Research Device Program
    打开菜单 关闭菜单
    • 与 Apple 会面交流
    • Apple Developer Center
    • App Store 大奖
    • Apple 设计大奖
    • Apple Developer Academy
    • WWDC
    阅读最近新闻。
    获取 Apple Developer App。
    版权所有 © 2026 Apple Inc. 保留所有权利。
    使用条款 隐私政策 协议和准则