How does the "login using Apple" system work and why it differs from other systems
Facebook, Google, Twitter, LinkedIn, GitHub, and third-party login systems have all solved the first-world problem of having to prepare and remember many different credentials for different services.
Despite this, Apple's new “Sign in with Apple” system aims to fix one of the biggest problems in many of these systems: privacy. By keeping the information they collect and collecting to a minimum, including many interesting privacy features designed to prevent user tracking, their ultimate goal is to provide users with a less intrusive social login option.
Although the system has not yet been fully implemented, it is likely to be ubiquitous on iOS apps by April 2020, the deadline Apple has set for many app developers to implement the new system along with other logs in options. It can also work across the web and on Android devices, but for the time being it is used only on devices that use Apple devices.
What makes this system different?
The Apple Sign-in system uses the same generic system as any third-party login process. Instead of creating a username and password for an app, you can only tell the app you want to log in with your Apple account, confirm your identity to Apple, and have Apple tell the app that it really is you. Facebook and Google do the same.
However, Apple has included many forms of privacy protection in its system that distinguishes it from its competitors. In addition, users of Apple devices can use biometrics instead of credentials to complete the registration/login process. Here are some of the most important privacy features offered by the new system:
The application does not provide much information
First of all, Apple's login focuses on minimal information exchange. When registering with Apple, the app only recognizes your name, email, and unique identifier from Apple. The identifier is not your Apple ID - this is hidden - but it is an icon that changes for each application, so it cannot be used to link user accounts to each other.
It can hide your email address
Your email address does not have to be a unique identifier either. If you don't want to reveal your real email, Apple will create a randomly generated address for you to use to register. All emails sent to this address will then be the primary email for your Apple ID.
And remember, Apple doesn't store or read it, it just redirects it. And you can create multiple addresses and delete them if you wish, which can also be a good security measure, because it means that your real email address will not be revealed in the event of a hack, of course, you can do this manually by setting up a bunch of mailing addresses Your email will be forwarded to your main account, but this is a simpler solution.
It does not track your interactions with the application
On the other hand, Apple does not collect any information about your interaction with the application. One of their main talking points is that they don't know much about their users and that they're not trying to learn more. This distinguishes them from companies like Google and Facebook, as it appears that using a social login service is a bit like a two-way street for your personal data.
In theory, you should know and agree to the traffic between Facebook and the application. In practice, with a lot of user data involved, especially when both the login provider and the application want to use it, this means that the relationship between the two does not stop at “Hello, here is a token that proves that the user is the same person who has a Facebook account This”This is where Apple aims to be different: It does not want to know or know the application much about you, they remain at the door after logging in to the application.
