I'm not Apple fanboy in any way, but how exactly trusting Apple to hold root acc... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		SXX on Oct 20, 2018 \| parent \| context \| favorite \| on: Signing Your Apps for Gatekeeper I'm not Apple fanboy in any way, but how exactly trusting Apple to hold root access to your system is any worse than trusting to baseband in any other smartphone? It's just whole chain of trust so fundamentally broken so there no way you can trust to any device and Apple at least not any worse here. In literally every phone baseband is not isolated, run it's own OS and can do anything to OS even if you have root. On top of that every ARM SOC have TrustZone that supposedly might also run any code and you have zero control over it.

ChrisSD on Oct 20, 2018 [–]

I think you misunderstand me. If "new management" were to take over Apple and you no longer trusted them, why would you continue to trust their OS?

In that scenario code signing is irrelevant because an untrusted OS can undermine it.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact