Apple has achieved a significant milestone by securing approval for its iPhones and iPads to handle classified information within NATO. As of Thursday, these consumer devices have been added to NATO’s Information Assurance Product Catalogue (NIAPC), endorsing them for the ‘NATO RESTRICTED’ level of security.
First Consumer Devices to Gain NATO Clearance
This approval marks the first time consumer-oriented devices like the iPhone and iPad have been cleared for such a high level of classified use. The NIAPC serves as NATO’s trusted directory for cybersecurity products that meet stringent operational security requirements. These products typically need to originate from NATO countries, obtain necessary certifications, and demonstrate suitability for NATO’s security needs.
The process for inclusion in the NIAPC is rigorous. Products must comply with a variety of standards and receive endorsements from national authorities. They are subjected to discretionary approval, and any compliance failures could result in removal from the catalogue.
Implications for Security and Usability
With this listing, iPhones and iPads can securely handle classified information without needing additional software modifications. The native applications such as Mail, Calendar, and Contacts on iOS and iPadOS have been identified as providing secure data access. This development highlights Apple’s commitment to integrating security into its products from the ground up.
Prior to this, Apple’s devices had already been approved for classified data by Germany’s Federal Office for Information Security (BSI), confirming their compliance with NATO’s security standards. BSI President Claudia Plattner emphasized the importance of integrating information security in the development stage to ensure successful digital transformation.
Technical Details and Testing
The NIAPC listing includes a term ‘indigo configuration’, which Apple clarified as a designation from BSI’s evaluation. Notably, the approval pertains to standard device configurations. Despite the catalogue mentioning iOS 26 and iPadOS 26, BSI conducted its tests on earlier versions of these operating systems.
This approval by NATO not only highlights Apple’s robust security measures but also sets a precedent for other consumer technology companies aspiring to meet international security standards. As digital threats evolve, maintaining high security standards will be crucial for consumer devices used in sensitive environments.
