Hacker News new | past | comments | ask | show | jobs | submit login

It's nothing to do with monopolies. It's just that it's an unworkable idea.

The worst a website can do is trick the user into downloading something. The worst an app can do is steal their data, capture video from their mic/camera, wipe their computer, turn it into a DDOS bot etc. It's night and day.

And so trusting third party certificate issuers who currently don't verify websites or their owners and having them now certify apps is a pretty big leap.




You misunderstood what I was suggesting. I'm not saying existing certificate authorities should sign apps, but that allowing a trusted authority to sign and distribute apps that a user could opt in to would be beneficial. Think yum/apt repo signing keys, and how if you add a third party repo you can require the public key signatures to match, except tied into the OS much closer. I used the CA analogy because vastly more people are familiar with that than the intricacies of open source package management for a few distros.


Even technical users have a limited capacity to properly vet what an authority should be allowed to do. Not to mention, this becomes a very heavy-handed choice to the user (as people already see on android), like "either allow this new app version to now root your phone, or you can't use this service at all"

The reason we can trust the CA certificates loaded in our browsers have proper processes and operate transparently is that the browser makers leverage those certificates being preloaded as bargaining power.

Would we have the opportunity to retain that sort of power in this decentralized world? Or do we start seeing the "essential" apps move out of the store and doing things like background monitoring of the user?


We already see how slimy so called trusted businesses are like Google and Facebook are by convincing users to install privacy invasive apps using the enterprise developer program.

Who are users suppose to trust?

Back in the day users also trusted SourceForge....


> And so trusting third party certificate issuers who currently don't verify websites or their owners and having them now certify apps is a pretty big leap.

That is why you should only do this if you are aware of the consequences.


How do you prevent a user who is not aware of the consequences but following directions from something they trust from doing it?


You put lots of warnings in front, and if after all that they trust the source of the directions, who are we to say otherwise? There's a lot of hubris in assuming we always know better than the user. It may be that in a decade or two people will be a but more knowledgeable about their devices, but I'm afraid we're moving down a path that will make that knowledge mostly useless, since there's now way to express it.

We're at an inflection where in the future we will either retain some control over our devices, or almost none. I'm done arguing for complete control, that's boat seems to have sailed. I'm just trying to influence people to not throw away all their control at this point.


And you're ignoring the entire history of computing.

Which is that even incredibly smart, incredibly technical users will still click on random dialog boxes and open phishing emails.

I understand where you're coming from but I wouldn't bet on a future where users are going to be somehow smarter about this sort of thing.


I'm not ignoring it, I just value freedom more. It's easy to make an almost perfectly safe society if we're all willing to give up on fundamental freedoms. I think the best solution preserves some core freedoms while making risky behavior harder. Between desktops and phones we've swung between two wildly different paradigms in the last couple decades. I don't think a bit of moderation on both ends (which is already happening with the OS as we see here) is a bad thing. But so far it seems mostly to be going one direction.


Apple is actually fairly good at making the warnings/process heavy-handed enough that only technical users will follow them.

For instance, the /System folder is not writable unless you reboot into single user or recovery mode, then run commands in a shell.

Several app developers (including Mojang with Minecraft) recommended turning off Gatekeeper to run their apps rather than dealing with developer signing or because they did not want to purchase a signing certificate. Apple eventually removed the option to disable gatekeeper from the UI (but retained it as a shell command).

The 'advanced user' override to run these apps has always been to select 'open' from the finder/context menu - but simply double-clicking on an app will give a failure screen, not an override/consent screen. (Yes - rather than telling users to right-click on their app, third parties told the users to disable app verification and quarantine for the whole system.)


Well a few geeks may value “freedom” more but most people value not getting viruses, malware, and ransomware.


It's really simple: It is not our job to prevent smart people from doing dumb things at all cost.

I find it surprising how lots of people who live in democratic, free societies, still have this urge for authoritarian solutions to every problem.

The history of the judicial system has shown that even incredibly smart people will sign contracts that are clearly to their detriment. Does that mean the appropriate solution is to only allow contracts that have been vetted by MicroLaw incorporated?

Overall, history is full of smart people doing dumb shit. The only way to completely prevent that is draconian authoritarianism. I would think humanity should have understood by now that that doesn't end well.


How do you prevent a user who is not aware of the consequences from throwing their a computer into a lake, we better ensure that all computers are Safe-T-Locked into desks so the user cant hurt themselves.


I think you have to use government to force Apple to trust these other software vendors.

It's not so difficult if your MacBook trusts Apple, Google, Amazon, and Microsoft out of the box.


I think you may have answered a different question




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: