After four years, why does Apple still let macOS users fail to skip notarization?

【ITBEAR】According to news on August 12, Apple has attracted much attention recently because the macOS Big Sur system released in 2020 suffered a large-scale server outage. This incident not only affected the installation process of macOS, but also affected core services such as iMessage and Apple Pay. The most prominent one was the paralysis of the application notarization service. This means that users are experiencing unprecedented troubles when trying to open applications, thus exposing the loopholes in Apple's Mac application verification mechanism.

1. The Mac system performs a series of verification checks every time an application is launched, designed to ensure that the application is not malware and to verify the validity of the developer certificate. This series of checks is often called "application notarization" and is an important measure to protect user security.

2. However, during the server outage, the macOS system still tried to connect to the server for verification instead of directly determining failure, which resulted in a significant increase in application startup time and great inconvenience to users.
3. In response to the crisis, Apple has announced a series of improvements that were originally planned to be implemented in 2021, including allowing users to completely opt out of online notarization checks.
4. Although Apple promised to stop logging IP addresses associated with Developer ID certificate checks and ensure that any collected IP addresses are deleted from the logs, there has been no movement on the option for users to completely opt out of online notarization checks. .
5. It’s worth noting that Apple has indeed implemented some of the promised changes, such as stopping the collection of IP addresses and introducing a new encryption protocol for developer ID certificate checks.
6. However, all mentions in the support document about users being able to opt out of online security protection features have been quietly deleted over the past year, which has undoubtedly aroused widespread concern and doubts from the outside world.
7. At this point, it appears that Apple has scrapped its plan to allow users to open apps without any form of online security check.
8. While Apple may have made other underlying changes to macOS to ensure that server outages no longer prevent apps from launching properly, the company still needs to clearly spell out its future plans in order to provide users with a clear and transparent solution . -->

The above is the detailed content of After four years, why does Apple still let macOS users fail to skip notarization?. For more information, please follow other related articles on the PHP Chinese website!