Mac users live in a wonderful world relatively free of viruses, malware and all manner of other computer security threats. To be sure, they are there but it is very rare to be taken down by a virus. Apple, however, seem to be aware that as their star rises, so does the challenge they present to hackers.
The traditional way these security threats are dealt with is on the computer. Various programs are available to scan what is going on for threats and to block or remove them. The whole activity takes place on your own computer; albiet with the aid of updates that upgrade defences. The problem, of course, that all of this stuff is a big pain — think of the many Windows users subjected to automatics updates by their administrators right in the middle of doing something. This causes users who can to drop defences somewhat.
In its latest software upgrade for the Mac announced yesterday, Apple has taken a new approach. To complement the firewall, Apple will now offer its own verification of the safety of installed programs. It does this already for apps sold through the Mac App Store but its Gatekeeper feature will not restrict users to that. If developers submit their apps to Apple, they can receive a verification signature whose stamp of approval will allow users to install them seamlessly. So users can, therefore, rely on Apple to verify how secure an installed program is.
Now Apple did not put this as a mandatory restriction — in contrast to what they do on mobile devices. It is just a default and that can be changed. So if you want you can install any program you want. It is just then that you take a risk. Apple are guessing that most users will not want to. I suspect they are right about that. If this works, it can shift the battle off people’s computers. Hackers will need to look to a more limited set of options if they want to hack Macs.
But what does this mean for developers? There is some concern. Part of it I’m sure is the spectre of Apple eventually requiring use of the Mac App Store just like with iOS but there is equally the possibility that this may be a precursor to less restrictions on mobile rather than more on Mac. But even without this, there is a very strong incentive to be approved by Apple and this will apply to upgrades as well. That means the cost of distributing to developers may go up. But, that said, for smaller developers, they get, for free, Apple’s assessment on security. Larger developers like Microsoft got that by dint of their reputation. To this end, by rolling it out in this way, Apple is enabling rather than restricting the opportunities for smaller developers. Of course, how it deals with open source options will be interesting.
There is nothing in this that is unique to the Mac. Indeed, when you think about it, establishing a curation function is something that might be more valuable for Microsoft to do. I suspect, therefore, they won’t be far behind on a similar approach to security.