Apple's Ability to Deactivate Malicious App Store Apps
When Apple launched the App Store, they suggested that the use of DRM'd and signed applications could allow them to protect the iPhone from malicious applications and suggested that they could deactivate such applications remotely. Jonathan Zdziarski, author of iPhone Forensics, reveals (via iPhone Atlas) the remote url that Apple is using to keep a list of the offending applications:
https://iphone-services.apple.com/clbl/unauthorizedApps
This url appears to keep a list of black listed apps which appears to contain a test application name. Zdziarski explains:
While Apple has been criticized lately for the removal of a number of App Store applications without explanation, those applications continue to work for those individuals who have already purchased the application. So far that list of prominent apps simply removed from the App Store include NetShare, BoxOffice and now I Am Rich (via Alley Insider).
We suspect Apple will reserve the use of this black list remote-deactivation for truly malicious apps, but even the unilateral removal of seemingly innocuous apps from the App Store has raised some criticism of Apple's editorial process.
https://iphone-services.apple.com/clbl/unauthorizedApps
This url appears to keep a list of black listed apps which appears to contain a test application name. Zdziarski explains:
This suggests that the iPhone calls home once in a while to find out what applications it should turn off. At the moment, no apps have been blacklisted, but by all appearances, this has been added to disable applications that the user has already downloaded and paid for, if Apple so chooses to shut them down.
I discovered this doing a forensic examination of an iPhone 3G. It appears to be tucked away in a configuration file deep inside CoreLocation.
While Apple has been criticized lately for the removal of a number of App Store applications without explanation, those applications continue to work for those individuals who have already purchased the application. So far that list of prominent apps simply removed from the App Store include NetShare, BoxOffice and now I Am Rich (via Alley Insider).
We suspect Apple will reserve the use of this black list remote-deactivation for truly malicious apps, but even the unilateral removal of seemingly innocuous apps from the App Store has raised some criticism of Apple's editorial process.
Top Rated Comments
(View all)
46 months ago
Well, a necessary evil.
As long as the use it responsibly, I have no problem with it. So far they're working at 100% "ok." I won't complain until that changes.
As long as the use it responsibly, I have no problem with it. So far they're working at 100% "ok." I won't complain until that changes.
46 months ago
This is exactly the problem with a closed phone and the app store. Everyone will say it's fine until Apple turns off an app they think is useful/fun/paid for/whatever.
46 months ago
It all depends on how/when they use it.
Given they don't give too much scrutiny to apps before they put them up on the store, they have to have some way of stopping them once they're out there.
p.s. I should also add: I REALLY hope this is implemented securely. Can you imagine the trouble a hacker could cause if they were able to 'spoof' the blacklist and blacklist all apps?
Given they don't give too much scrutiny to apps before they put them up on the store, they have to have some way of stopping them once they're out there.
p.s. I should also add: I REALLY hope this is implemented securely. Can you imagine the trouble a hacker could cause if they were able to 'spoof' the blacklist and blacklist all apps?
46 months ago
If apple closes an app.they should restore the cost to the user. I know...almost impossible to do..but doesnt that seem fair?
46 months ago
Apple has really got to work on the App store. Their lack of communication to developers who have put a lot of time and work into apps that just disappear, the slowness of "approving" new apps, the organization of the store, etc. There's so much potential, but the execution has been bumpy.
46 months ago
...but even the unilateral removal of seemingly innocuous apps from the App Store has raised some criticism of Apple's editorial process.
Article Link
Gee, just like every store on the planet Apple decides what it wants to have in its store. Maybe the critics should build their own phone and store. What a bunch of crybabies.
46 months ago
No thanks. I like my freedom, not some corporation telling me what I can do with my phone. Apple have gone too far already :mad:
46 months ago
I thought they should have kept "I am Rich" in the app store. I don't think they need to start passing judgement over quality. Just make sure it doesn't crash, cause problems, or break their rules.
I suspect NetShare and BoxOffice removals were on some technicality and will return, though they need to tell developers when they pull their apps.
arn
I suspect NetShare and BoxOffice removals were on some technicality and will return, though they need to tell developers when they pull their apps.
arn
46 months ago
If apple closes an app.they should restore the cost to the user. I know...almost impossible to do..but doesnt that seem fair?
Yes. If a person buys an app in good faith, only to have Apple decide (based on whatever criteria) that the app should be revoked, then Apple should credit the purchaser.
Depending on the situation, I would have less of a problem with Apple not reimbursing the developer, particularly if the developer was being overtly malicious, etc.
46 months ago
Why is I Am Rich removed?! 1.0.1 was going to include costume colors and a choice of jewels! And a Lite version for only 552 bucks was ready... Screw art i guess...
[ Read All Comments ]
Apple today updated iBooks [App Store] to version 2.0.1, bringing a fix for an issue that resulted in some iBooks Textbooks not opening in the application.
Apple is not terribly specific about...
As the Mac becomes more popular, the arrival of A-List titles to the platform is beginning to become a more common occurrence. The latest top-shelf game to hit the Mac is Id Software's RAGE,...
One year ago today, News Corp. launched its iPad-only newspaper called The Daily. It was the first app to take advantage of the "In-App Subscription" feature that Apple launched the same...
As noted by 9to5Mac, Apple today began seeding Safari 5.1.4 to developers for testing, signaling the next round of improvements for Apple's browser software. Safari 5.1.4 is available in...
MCV reports (via The Next Web) that Apple has nabbed yet another gaming PR executive, this time hiring Microsoft's European chief of Xbox Live marketing Robin Burrowes to oversee App Store...
