Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

Apple’s position is that the average user isn’t supposed to be installing apps from outside the App Store anyway. Who is the average user, you ask? No one who posts to or reads HN, that’s for sure. Your parents, grandparents, and clueless neighbors are all average users. They will benefit from the decrease in malware and increase in assurance that the app won’t do something fishy.

Everyone else will bypass protections and continue as before.



But from the perspective of a dev it means you will need to either go through the App Store (and pay / let Apple have any list word on your app) or have your users drastically reduced because they can't even open the app.


It's an acceptable price to pay for security. This price is dictated not by Apple, but by all the malicious actors who have abused the frictionless path from dev to user in order to distribute virii, malware, adware, spyware, and all the other crap that non-technical uses have been contending with for decades.


Apples position might also be the knowledge about creating money from signatures that can increase the value of their company from their possession.

https://www.zdnet.com/article/illicit-certificates-worth-mor...

I think the security effect will be marginal.


This is quite a reach: I'm sure the amount of money Apple could possibly make with something like this is marginal.


Are you saying that Apple is the market maker for some shady marketplace of code signing certs?


> Apple’s position is that the average user isn’t supposed to be installing apps from outside the App Store anyway.

Is this Apple's position, or is their position that apps you install on your system should be vetted in some way (either via the App Store, or via the notarization process)? It seems to be the latter based on reading the link, but I might be wrong.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: