Apple Execs Share More Thoughts on iPadOS and New Secure Sign-in Service

[macfacts]

I file this feature under the category “people don’t know what they want until you show it to them”. Seriously, no one thought of this or asked for it. But I’ll be using it for every website I have the chance.

Single sign on. It has a name. Been invented before.

 

[MisterSavage]

This is exactly my question. Surely it only applies to new app or website sign ins? Which is not that great as today- most people will have existing log ins already (having used google or Facebook previously)

I would think you would just be able to add Apple sign in as another auth method. An example I'll use is Kayak. I created a Kayak password and later linked my Google account to it. I can sign it with either the kayak password or with Google. Under preferences there's a 'social connections' section where I can unlink Google or I could add Facebook as a login method. Hopefully you can just link Apple there in the future.

 

[dannyyankou]

Single sign on. It has a name. Been invented before.

I meant no one thought of it coming from Apple. Go through the iOS 13 speculation thread and I bet you won’t find a single post about it before yesterday.

 

[Dario69]

As a developer, I will just avoid third party login solutions in order to avoid the Apple sign-in ID requirement. That way, Apple can’t force me to have fake email addresses to market to. This button is great as an option for consumers, but forcing it on devs is tonedeaf (it should be an option for developers using third party logins, thus encouraging Apple to be competitive). In the end, this policy only hurts google and Facebook since most developers will just avoid third party logins now. But Apple can taketh away since they forbid other app stores on their platform or downloads from the internet to compete with their monopolistic developer rules. Competing App stores would really solve this arbitrary decision making by Apple, since the developers and consumers should be the one making the decision

But the consumers are making a decision in this case by using Google, Facebook, or Apple for the login. It isn’t like they are forcing just their own Apple login.

You can’t argue against choice for the consumer which is exactly what this is. Yes, it adds a unknown for developers to deal with as far data sharing but hey, consumers should come first to the developers as well at the end of the day.

 

[Newjackboy]

I would think you would just be able to add Apple sign in as another auth method. An example I'll use is Kayak. I created a Kayak password and later linked my Google account to it. I can sign it with either the kayak password or with Google. Under preferences there's a 'social connections' section where I can unlink Google or I could add Facebook as a login method. Hopefully you can just link Apple there in the future.

What if you only ever used google to sign into kayak?
Would u then log in, add apple and delink google?

 

[Scooz]

True, the game is matching anonymous accounts with real identities, but the game is getting much harder now. Apple has taken multiple measures already in Safari to make all browsers look the same and to minimize fingerprints. Apple Pay hides my payment information. If you use private browsing the cookies will be deleted every session. There won’t be much left but a bunch IP addresses that my random account has used at a bunch of different locations with different IP addresses.

The problem is, that the address only has to be matched once, then it will
be registered to your real one forever. Being caught once is pretty probable

ApplePay is a totally different beast since you don‘t have to refer to that one-time token later on.

(You could renew it, change it in the used service. Then again, people don‘t even delete their cookies...)

Anyway, I’m not saying that there won’t be/isn’t a working solution for ensuring anonymity for service accounts (in fact Apple’s approach is a part of proven solutions), it just has to be complete and also hide the rest of trackable details. As long the service sees my IP when I connect, this is such a strong feature that providing a fake address on top just seems not worth the effort.

 

[MisterSavage]

What if you only ever used google to sign into kayak?
Would u then log in, add apple and delink google?

I hope so!

 

[JohnDoe98]

The problem is, that the address only has to be matched once, then it will
be registered to your real one forever. Being caught once is pretty probable

ApplePay is a totally different beast since you don‘t have to refer to that one-time token later on.

(You could renew it, change it in the used service. Then again, people don‘t even delete their cookies...)

Anyway, I’m not saying that there won’t be/isn’t a working solution for ensuring anonymity for service accounts (in fact Apple’s approach is a part of proven solutions), it just has to be complete and also hide the rest of trackable details. As long the service sees my IP when I connect, this is such a strong feature that providing a fake address on top just seems not worth the effort.

I am not claiming the problem is solved, but we are getting closer every year. My IP just tells them who my service provider is, if laws prevent my ISP from sharing my information the IP address doesn’t give them anything. But sure for more security a trusted VPN or Tor is always good.

 

[ipedro]

now with all this security and convenience, a lot of people will delete their old accounts and throwaway gmail ones.

I’ve been thinking about which accounts I can easily delete then restart under Sign In With Apple.

There are sites that have a long accumulated history that will be difficult to port over but a lot of online services can be rebooted with a fresh account without much issue.

Lately, I had been going to each service I use and attempting to remove my Facebook sign up and using an email address instead. I’ve done it successfully for quite a few. I’ll do it again with Apple and “no email” at all this time.

I hope that there’s a fast adoption given Apple’s rule.

 

[Scooz]

I am not claiming the problem is solved, but we are getting closer every year. My IP just tells them who my service provider is, if laws prevent my ISP from sharing my information the IP address doesn’t give them anything. But sure for more security a trusted VPN or Tor is always good.

Nah, the problem with your IP is that your gmail/facebook/twitter access with true credentials comes from the same one at approx. the same time as your site access where you used that relay address. This even worked before the cookies flood, bit less well on shared networks (therefor cookies and fingerprinting) but now with personal cellular devices better than ever. IP masking/obfuscation is crucial here. IP6 already can help, with the right settings and stack, still Apple might need to run a TOR-like farm next

Anyway, as you said, it’s a start. We’ll see (or believe in) how well it will work with the current infrastructures.

 

[einsteinbqat]

Does this means that iOS will change back to iPhoneOS?

 

[az431]

The developers absolutely share info with FB and google in a co-conspiratorial capacity. I expect many will not allow Apple to circumvent this.

Developers don’t have a choice whether to share data with Facebook or google. Installing their frameworks in an app is like injecting yourself with cancer.

 

[definitive]

not long now until we start seeing "sign in with android", "sign in with samsung", etc.

 

[apolloa]

As I thought after the announcement, Apples new sign in system is being talked about in other circles as prodding the anti competition commissions with a pointy stick! Forcing app developers to include this if they have third party login systems, it Apple are also ‘suggesting’ these deva place the Apple login button above front and centre other login system options...

I don’t think the EU will like this one bit..

I’ll use it though all the same!

http://9to5mac.com/2019/06/05/sign-in-with-apple/

 

[zosobao5150]

So now I will have to purchase the apps again that I can currently share between my phone and ipad??? Good deal for developers, and potentially very bad for consumers.

 

[gwhizkids]

I file this feature under the category “people don’t know what they want until you show it to them”. Seriously, no one thought of this or asked for it. But I’ll be using it for every website I have the chance.

This is a great comment!

 

[Digickle]

not long now until we start seeing "sign in with android", "sign in with samsung", etc.

Android already have "sign in with Google"

 

[lederermc]

Android already have "sign in with Google"

Does everyone have a Sign in with google option... not just Android.

 

[mannyvel]

The future that we're heading towards is one where end-users can monetize their own data. There hasn't been a good way to do that until recently.

Wouldn't it be nice to get paid to watch ads for stuff you want instead of having to endure ads that don't apply to you? You could make more money by allowing more ads, or less by restricting the ads you get. The amusing thing is that the people with less ads will be worth more, since presumably they'd be higher net worth.

 

[StyxMaker]

As a developer, I will just avoid third party login solutions in order to avoid the Apple sign-in ID requirement. That way, Apple can’t force me to have fake email addresses to market to. This button is great as an option for consumers, but forcing it on devs is tonedeaf (it should be an option for developers using third party logins, thus encouraging Apple to be competitive). In the end, this policy only hurts google and Facebook since most developers will just avoid third party logins now. But Apple can taketh away since they forbid other app stores on their platform or downloads from the internet to compete with their monopolistic developer rules. Competing App stores would really solve this arbitrary decision making by Apple, since the developers and consumers should be the one making the decision

As a ‘consumer’ of apps I will make the final decision which will be, in this case, to avoid apps that don’t offer the Apple log in option.