You know security is an overwhelming term and while I had the luxury to work for security firms, I find it infuriating at times. There are just too many layers to add and protect. It’s a real thing to say that only a properly disconnected system can be made secure. The rest depends on the handling. But, when I see firms advocating for more and more layers of security, it just makes me nauseated. One way to do it is to stop installation of the programs at its core. Meaning that the platform itself can’t be modified by anything that the platform doesn’t comply with. It’s sort of good to have things in theory but the practicality of implementing it makes the life of an average technical user a living hell.
Google introduced Android App Bundle (AAB) in May 2018 and made a subtle announcement to replace Android Package Kit (APK) with AAB for its value on smaller size. It’s no secret that AAB does require applications to be signed and then pushed to Google Play Store. But, till date, you can still sideload an APK application in your Android device without the need to sign your application. Google never enforced anything on the users at least yet. It sort of gives you an upper hand as compared to iOS devices where you are only allowed to install a signed application through the App Store.
While Google gives you more freedom, it still collects your data more as well and that too without notifying you. The difference is in the privacy policy of Apple and Google. Both collect data and warn at the time of application installation. Apple takes a step forward and lets you know each time an application tries to collect your data with prompts and messages. I’m not sure how much that is useful but you can’t really argue on that with Apple. At least, this has been the story so far with iOS. But, now Apple wants to take total control over all of its platforms.
macOS was one of my favorite variants of the BSD kernel (Berkeley Software Distribution on which it is built.) And, I have preferred macOS over iOS for one of the most important reasons for allowing sideloading. It meant for me a little freedom to install applications. But, the recent announcement by Apple on Monday, October 28th, rendered my hopes down. With macOS 15.1 update, they have made it clear that the applications need to be signed (or say notarized) first before you install them. It means that any developer who creates an application for macOS has to pay $99 to Apple Developer Connection to get their application notarized and then release it to the public.
So, if you’re like me, who tends to use open source software on macOS, your days of freedom are over. It’s just not practical for most open source developers to pay an extra $99 to Apple. It’s not only a sign of software monopoly on developers but also on users to give up the choice they had before. Basically, when you buy an Apple product now, you’re actually surrendering your entire freedom with no choice left. But, don’t get too excited on Google as they can too exercise this anytime in the future!