Unfulfilled macOS Privacy Promises from Apple Remain a Concern
After the release of macOS Big Sur in 2020, Apple experienced significant server outages, which disrupted numerous services, including app notarization. This led to considerable difficulties for users attempting to open apps, exposing flaws in Apple's app verification process.
Background
When launching an app on macOS, the system conducts verification checks to ensure the app is not malware and the developer certificate is valid. These checks are known as app notarization. Ideally, if offline, these checks fail, allowing the app to launch. However, during an outage, macOS persisted in contacting servers, resulting in painfully slow app launches.
Appleâs Promised Changes
In response to these problems, Apple promised changes, including allowing users to completely opt out of online notarization checks. This change was supposed to begin in 2021 as a measure to address privacy concerns regarding data collection.
Apple pledged to enhance privacy by stopping IP address logging during Developer ID checks and introducing a new encrypted protocol, among other changes. These moves were meant to strengthen protections against server failure and enhance user control.
Potential Abandonment of the Feature
While Apple implemented some promised changes, such as stopping IP address collection, there remains no option for users to fully opt out of notarization checks. Moreover, references to the feature were quietly removed from support documents over the past year.
Developer Jeff Johnson highlighted this oversight in his blog, suggesting that Apple may have abandoned plans to allow app launches without online security checks. This remains a notable concern, as apps can take longer to launch if servers are down.
Current Outlook
Allowing an opt-out for notarization checks would significantly enhance user privacy, reinforcing the notion that the Mac truly belongs to its user. Despite potential underlying changes to prevent future server-related app launching issues, a formal opt-out remains absent. Apple needs to clarify its intentions regarding this promised feature.
Originally reported by 9to5Mac.