Apple still hasn`t fulfilled its 4-year-old privacy promise for Macs

Apple still hasn`t fulfilled its 4-year-old privacy promise for Macs

When macOS Big Sur was launched, Apple experienced server outages, which caused interruptions in everything from macOS installations to services. This revealed an issue with application approval checks.


The Unfulfilled Promise

For those unaware, every time you open an app on a Mac, the system performs several verification checks. One of these is to ensure that the app is not malware, and another is to verify that the associated developer certificate is still valid. These checks are part of Apple’s "notarization" process, aimed at keeping users safe.

However, if your Mac is not connected to the internet, these checks do not happen, and the app opens as usual. When a server outage occurs, macOS prioritizes server verification, which causes app launches to slow down significantly. But that’s not the only issue.

Some users expressed concerns that this system, designed to protect against malicious software and unauthorized apps, could potentially be used to collect data. Apple had promised to give users the option to opt out of this online verification process.

Additionally, Apple said it would stop logging IP addresses related to Developer ID certificate checks and ensure that any collected IPs would be removed from logs. They also announced new encrypted protocols for Developer ID certificate revocation checks, stronger protections against server failures, and the ability for users to opt out of these security measures. However, the promised opt-out option for online checks has yet to be implemented.

Comments

Ads by Google