Apple's Craig Federighi: Mac Not Meeting the Bar for Customer Protection

[Kierkegaarden]

The man is telling it like it is. Any security compromise is unacceptable. The Mac just has more potential for these threats. I believe Apple built iOS with a focus on reducing the potential for security threats and malware, and largely they have succeeded.

 

[Wildkraut]

You all started this when you wanted iOS to be open like macOS.

Nope, this is on their backlog since years…

 

[Atarikid]

And there it goes
macOS 12 : you can no longer install apps outside the Mac App Store

Well, that will not happen. But I do see a future macOS version only accepting code signed apps. The Apple Silicon already need code singed or adhoc signed apps.

 

[damphoose]

Outside of behemoths like Epic with Fortnite, who has an app so important that people are actually going to go into their phone's developer options and enable third party app installation to install it? These chicken little arguments are why I have little sympathy for Apple in this case.

You do realize that if this ever comes to pass there will be no such thing as “going into developer options to enable 3rd party apps“. That will be seen as more gatekeeping. If Apple loses the ability install 3rd party will be turned on by default. The post app store world is so foreign to you, you can’t even imagine it beratna.

 

[Wanted797]

If Apple loses, it will be the end of a secure platform. Various companies, game publishers and banks will begin to force you to install applications from their stores. there will be 100 different stores and a total mess.

Just reading this made me sad.

Australian banks already tried to bastardise the Apple Pay process no doubt they’ll double down on this.

 

[damphoose]

I guess you're not watching the case very closely. Most legal analysts disagree. By the way, I did see MacOS literally thrown under a bus once, and it destroyed the computer.

You have a source for this? I’m genuinely curious because historically whenever things like this get to trial the supposed ”monopoly“ always loses. They don’t always lose completely but they never come out of it whole. If Apple if is forced to make even a tiny concession it could mean millions for Epic and others like Spotify. The real fight was preventing this from getting to court. Apple lost that battle. So who are these legal experts saying Apple is winning?

 

[bluecoast]

If security is so important, the solution would seem to be to make the App Store on the Mac THE place to download apps, with a choice of payment providers (Visa, MasterCard, PayPal etc) who can set their own transaction fees, along with a v reasonable ‘app store’ hosting fee to Apple, to help them cover their costs of operating an App Store.

And then do the same for Apple’s other platforms.

 

[ToiddMedia]

Agreed, I can’t wait to install all that malware ASAP…

…I would rather take that as indirect or exaggerated comments…

 

[LeMo]

Firstly, M*M solutions like JAMF are opt-in so .... don't if you think you'll get a load of garbage on your device.

Secondly, I think the main topic here is money. Epic wants more and I think the TCO of the App Store could weigh against Apple - after all, 30% for a low-friction environment end-to-end could be considered hefty. I can see on low volume sales it might be OK but it could be that the movement from this case is that high volume sales gain discounted fees. This is the reason why you can't sign up to Netflix or Spotify from the App, that's their workaround.

Sideloading is of course possible, even without jailbreak, but of course it's more friction than being in the store. It also comes with issues on how to get paid, too.

Deregulation of App stores is not the answer, not the solution here. The Android ecosystem is a prime example with the Play Store, App Gallery and more. No App developer will want to deploy to all those stores, we presently don't want to deal with the App Gallery but they want our Apps.....

 

[matrix07]

a policy that works for one won’t necessarily work for the other.

Exactly! It’s just pure greed from the like of Epic.

 

[Stephen.R]

Apple could just void AppleCare if you download apps outside the AppStore! AppleCare is what sets apple apart from others! No way they should or could handle the barrage of complaints that will inevitably happen!

People already complain that Apple will void the warranty if you physically open the device and futz around inside.

But you think people will accept "you installed an App" as a reason to void warranty? Good luck with that.

 

[boss.king]

Time for hearing aids? Your desire Apple to become the next big business failure is causing you to hear what you want to hear, not what he said.

Why would I want them to be a business failure? Then I'd have to look elsewhere for all my gadgets.

Also, how would increased App Store revenue make them a failure? Maybe you need to keep the hearing aids for yourself?

 

[TheMacDaddy1]

The Mac was once the epitome of general purpose computing, revered by professionals & laymen alike. But now, since most Mac users make purchases outside the Mac App Store bypassing Apple’s Censor board & 30% Extortion booth, Apple is willing to throw the Mac under the bus. Anything to justify the App Store cash cow.
They’ve abandoned a lot of Mac hardware and software recently: Aperture, Xserve, Airport, Thunderbolt Display, target display mode, iMac Pro, an entry-priced Mac Pro, nvidia GPUs etc. Out of resentment, Apple also priced the professional Mac Pro & XDR display beyond $5000.

And yet Mac sales are better than ever. I predict they keep getting better as the M series gets better and better.

 

[TheMacDaddy1]

oh my ***** god. i enjoy hair force one at the presentations, but all i could do reading this was eye roll and think "get off this nonsense already."

i'm not sure where the metrics are on malware for macOS, but i install most of my apps NOT from the mac app store because i vehemently oppose the notion of it, and the microsoft store. much like on windows which does not babysit its users, i am *absolutely* fine and do not encounter some "unacceptable" amount of malware.

locking down an OS to someone's standards of "approval" is heinous, nonsensical, a horrible direction to take, and a piss poor excuse / defense for the lack of flexibility that iOS and iPadOS have. this is a disturbingly asinine position to take, and i hope this judge accepts nothing of this.

say NO to locked down macOS. locked down macOS would just suffer the same problem as this upcoming iPad: fantastic available power but nothing to actually do with it.

i have jailbroken almost every iphone i've had since the iphone 4. i would jailbreak my mobile apple devices the moment i got them into my hands if such an option were available. so much can be done that apple does not "permit" because "OMG MALWARE."

yeah. okay. because even jailbroken without the protection of Daddy AppStoreReview i didnt encounter a malware ridden device.

this makes me livid. how stupid does apple leadership think people are?????

You represent 1% or less of Apple customers and while that is perfectly ok, they do not care.

Your computing habits fit way better with Linux and Android.

 

[TheMacDaddy1]

Considering the entire Mac line, 2005 to 2015 would be a really good period.
The core audience for the Mac for a long time was audio-video professionals & hobbyists. You’d always find Mac Pro in recording studios, iMacs & cinéma/thunderbolt displays in film production, in architecture & design studios etc.
The Mac Pro got neutered in 2013 (“can’t innovate anymore my arse”) only to be revived in 2019 starting at $5000.
The Thunderbolt Display neutered around 2013, same story. Now starting at $5000. Aperture (Apple’s professional photo editing software) abandoned around 2014. Xserve servers? Abandoned around 2011/12.
I could go on, but I think you see the pattern.
l‘ve been a pro Mac user for over a decade. I admired these products. They were durable, reliable, upgradeable, repairable & serviceable. Apple was very friendly towards repairs & upgrades too.
Today Mac is designed for a different audience (iOS users & influencer) while these products don‘t bring any of the qualities & features that the Macs from the past did. The Mac has unfortunately turned into a luxury brand where you’d buy one just for the status, not for the passion.
Obviously, it’s Apple’s choice how they want the Mac to be. I just feel that they’ve alienated their core audience. They could have done things much better

And yet Mac sales are better than ever. I agree they mad some mistakes they have back tracked and innovated out of those as well. Horrible keyboards are gone and the M series chips are a huge innovation that looks to bring a big change to computing.

 

[TheMacDaddy1]

Most people don’t know their computers are infected with malware. That’s intentional so that the malware goes unrecognized and does it’s thing for longer periods of time.
Second point, most antivirus software companies are scum, mining your data and selling info. Most are bloated software that do nothing more than slow your computer.

Most malware today is user inflicted. The user does something stupid to install it. On a Mac gatekeeper blocks bad stuff. You have to go out of your way to over ride it. Any good developer will support gatekeeper on the Mac.

 

[Ethosik]

Is this really a shock to anyone? I mean malware for macOS increased 1,000% in 2020 alone. The ONLY reason macOS is as "secure" as it is, is all due to Windows being the priority for malicious developers.

 

[michaelsviews]

Epic really needs to win this for our sake

Orrrr YOU can always go to just about any carrier now a days and trade your iphone and probabyly iPad in for an Android based device and not worry about Apple

 

[elptdbi3lYI]

“ Federighi’s analogy is that the Mac is like a car: The Mac is a car. You can take it off road if you want and you can drive wherever you want. That’s what you wanted to buy. There’s a certain level of responsibility required. With iOS, you wanted to buy something where children can operate an iOS device and feel safe doing so. It’s really a different product”.

I disagree with Craig. I can set parental controls on my kids Mac and iPhone so one is not any safer than the other.

iOS toddler's toy confirmed by the man himself.

 

[Apollo33]

Any security compromise is unacceptable. The Mac just has more potential for these threats.

This "security theater" argument is why we now have ineffective, invasive TSA "security" at airports.

Even if you never install anything ever, there's still the potential for breaches in security. (More so if you never install updates.)

Moreover, the option for others to install an application from outside the App Store does not mean you have to do so.
Just because you don't like hamburgers doesn't mean we should ban hamburgers.

Android has been taking the Mac approach to external apps by requiring users to disable protection by default. iOS could do the same. At that point, if a user willingly chooses to sacrifice protection for software distributed outside of Apple's channels, they should be able to do so... Just like on every PC, Mac, and Android ever sold.

Despite Apple touting the Mac's "security" over Windows in various commercials over the years, macOS never reached anywhere near the popularity of Windows due to the lack of apps. That's also why Bootcamp was a heavily touted feature for converts: "You can still dual-boot and use all your apps."

Similarly, iOS would be nothing without the app ecosystem which has everything to do with the independent developers and not so much to do with the App Store specifically.

I'll note: A lot of Apple's built-in "innovative" features and apps were basically acquired/stolen from jailbreak add-ons or third-party apps. Dark Sky, Night Shift, Swype, etc.
10 iOS 11 Features Apple Copied From Jailbreak Apps and Tweaks (iphonehacks.com)
iOS 13 Features Apple Copied From Jailbreak Tweaks | Redmond Pie

 

[1258186]

Developers don't want to pay 30% (or 15%) to Apple. This is a case where developers choose what's best for them and they are allowed so by Apple.

I don't care about developers and would like for them to pay whatever Apple demands so their application is in the Mac App Store.

You “don’t care” about developers and yet I presume you use their software. The current system where users and developers have a choice to use the Mac AppStore or not is by far the best system.

 

[Ethosik]

iOS is locked down and people still get scammed and get malware on it, so what is the answer Nostradamus?

So making it MORE open will IMPROVE the scamming situation?! Seriously, this argument is just as ridiculous. There are still murderers that get away, robbers, speeders, and so on, so what is the point of having police!

 

[Ethosik]

If Apple locks MacOS to the App Store they better get the Microsoft treatment x1000000000000000000000000000000.

Um...I have yet to see any Apple product at any business I have worked on in the past 20 years. Compared to the 100,000+ Windows PCs I have seen. macOS marketshare is NOTHING compared to Windows. And this is EXACTLY why macOS is as "secure" as it is. Malware is mostly written for Windows as it has ~85 percent marketshare.

 

[Ethosik]

You might be the last person on Earth who uses a phone primarily as a communication device. Many will have different priorities. Also, nobody really checks the apps in the App Store for malware anyways, so it’s not clear if the alternative app stores represent any additional security risk.

Why not just get a cellular iPad then? If I am in an accident, I need my phone to be able to call 911 at all times.

 

[Ethosik]

I have never run anti-virus on any Mac and have never had malware.

Smart computing plus Gatekeeper has been just fine.

Not saying your system has malware, but most of the time malware goes undetected for many people. Even with anti-virus software installed, malware can still go unnoticed.