Apple Executive Says Users Who Want App Sideloading Already Have That Option With Other Platforms

by

Apple earlier today published a detailed report outlining in blatant terms the negative impact that sideloading would have on the iPhone and iPad, specifically calling out the impacts it would have on user privacy and security. Now, the company is continuing its PR push, with an executive noting in an interview that users who wish to sideload apps already have that option thanks to other platforms.

iPhone 12 v Android 2020
Speaking to Fast Company, Apple's head of user privacy, Erik Neuenschwander, said that opening the doors to sideloading apps on ‌iPhone‌ and ‌iPad‌, which would enable users to download apps from the web and other app marketplaces besides Apple's App Store, could lead users to be "tricked or duped" into "some dark alley."

The executive, who made an appearance at the company's developer conference last year, ultimately said that iOS is not the platform for users who wish to sideload apps, suggesting that those users might want to consider other platforms.

"Sideloading in this case is actually eliminating choice," he says. "Users who want that direct access to applications without any kind of review have sideloading today on other platforms. The iOS platform is the one where users understand that they can't be tricked or duped into some dark alley or side road where they're going to end up with a sideloaded app, even if they didn't intend to."

Currently, apps must go through Apple's rigorous ‌App Store‌ review process, but if sideloading was allowed, apps would be able to bypass the review process. Neuenschwander also said that sideloading apps would leave the user vulnerable to viruses, malware, and more.

"Today, we have our technical defenses, we have our policy defenses, and then we still have the user's own smarts," Neuenschwander says, referring to Apple's App Store processes. Sideloading would negate those defenses, he contends.

"Even users who intend—they've consciously thought themselves that they are only going to download apps from the App Store—well, the attackers know this, so they're going to try to convince that user that they're downloading an app from the App Store even when that's not happening," Neuenschwander says. "Really, you have to think very creatively, very expansively as an attacker would trying to go after so many users with such rich data on their device. And so users will be attacked regardless of whether or not they intend to navigate app stores other than Apple's."

Unlike the tightly controlled nature of the ‌iPhone‌ and ‌iPad‌, users are able to download and run apps from places other than the ‌App Store‌ on macOS. Neuenschwander attempted to draw a clear distinction between iOS and macOS, pointing out that the ‌iPhone‌ is a device that users have all the time, carrying personal information such as their location. He noted that the data on ‌iPhone‌ is "more enticing" to a potential attacker compared to information on the Mac.

"It's the device you carry around with you," Neuenschwander notes. "So it knows your location. And therefore somebody who could attack that would get pattern-of-life details about you. It has a microphone, and therefore that's a microphone that could be around you much more than your Mac's microphone is likely to be. So the kind of sensitive data [on the iPhone] is more enticing to an attacker."

Neuenschwander went on to explain the difference in usage between the ‌iPhone‌ and Mac. According to Neuenschwander, users on Mac tend to only download a few applications needed for their job and not explore other applications. On the contrary, ‌iPhone‌ users are downloading apps continuously, making sideloading more dangerous, according to the executive.

But that's not all. "The pattern of use of the Mac—just the style, how people use that platform—tends to be that they get a few applications that they use to do their job or their hobby, and then it kind of reaches a steady state," Neuenschwander explains. "But what we've all seen is that mobile platforms, including iPhone, are ones where users are downloading apps on a continuing basis. And that gives an attacker more opportunities to get in and get at that user. So the threat on the iOS side is much higher than the threat on the Mac side."

Craig Federighi, Apple's software chief overseeing the development of iOS and macOS, said during his testimony for the Epic Games trail that the level of malware on the Mac is at an unacceptable level, possibly warning that similar levels of malware could make its way to the ‌iPhone‌ if sideloading was enabled.

Tag: App Store

Top Rated Comments

fenderbass146 Avatar
fenderbass146
12 weeks ago
Yup… been there done that, once I got past my customizing and stealing apps phase the appeal of Android died. I’ll stick with my stable and more secure iOS devices.
Score: 107 Votes (Like | Disagree)
aplnub Avatar
aplnub
12 weeks ago
I don't want my iPhone any less secure than it already is. For the tiny sliver of the iPhone user base that feels side loading is important to them, Android is there for you to use.
Score: 67 Votes (Like | Disagree)
Your Royal Highness Avatar
Your Royal Highness
12 weeks ago
Such bs macOS has been doing fine for years. This is just fear mongering to protect their billion dollar cash cow.
Score: 56 Votes (Like | Disagree)
perezr10 Avatar
perezr10
12 weeks ago
I agree with him. If you’re willing to trade security for flexibility, than Android is more for you.

I don’t want Apple to make The iPhone worse to please a noisy minority. And especially not to get the CEO Of Epic another Lamborghini.
Score: 47 Votes (Like | Disagree)
cmcbhi Avatar
cmcbhi
12 weeks ago
But, I agree.
If you want to side load, Android is there for you.
Don't let the door hit you.........well, you know.
Score: 35 Votes (Like | Disagree)
xflashx Avatar
xflashx
12 weeks ago
I honestly don’t understand the problem. Why not simply allow sideloading apps if enabled in System settings buried under several popups and warnings about possible consequences when enabling that option? Most people would probably leave the sideloading option disabled and the other ones probably know what they are doing and accept possible consequences or privacy violations.
Score: 35 Votes (Like | Disagree)
Read All Comments

Top Stories

XcodeGhost Featured1

'XcodeGhost' Malware Attack in 2015 Impacted 128 Million iOS Users, According to Trial Documents

Friday May 7, 2021 12:55 pm PDT by
Back in 2015, a malware-infected version of Xcode began circulating in China, and malware-ridden "XcodeGhost" apps made their way into Apple's App Store and past the App Store review team. There were more than 50 known infected iOS apps at the time, including major apps like WeChat, NetEase, and Didi Taxi, with up to 500 million iOS users potentially impacted. It's been a long time since the ...
Read Full Article84 comments
aapl logo banner

Apple's Past Sideloading Plans, Ecosystem Lock-in Strategy, and More Revealed in Internal Documents

Friday August 20, 2021 7:35 am PDT by
Documents highlighted by The Verge and disclosed as part of the Apple vs. Epic Games trial have revealed that Apple discussed plans for sideloading apps, sought to lock users into its ecosystem using gift cards, attempted to tackle chaos in the App Store review process, and more. Several of the internal documents related to internal discussions around the possibility of sideloading iPhone...
Read Full Article246 comments
app store blue banner

Apple Letting 'Reader' Apps Offer Links for Account Sign Ups Outside of the App Store to Close Japan Investigation

Wednesday September 1, 2021 5:09 pm PDT by
Apple today announced that the Japan Fair Trade Commission (JFTC) has agreed to close its App Store investigation in exchange for changes to how "reader" apps like Netflix operate. Reader apps allow users to browse previously purchased content or content subscriptions for digital magazines, newspapers, books, audio, music, and video. Going forward, developers that create "reader" apps will...
Read Full Article183 comments
app store vs developers

Apple's Planned App Store Changes Will Barely Affect the Company's Bottom Line, Says Analyst

Wednesday September 8, 2021 8:00 am PDT by
As a result of legal and regulatory pressures, Apple recently announced some upcoming changes to its App Store policies, such as letting developers email customers about payment options available outside of their iOS app and allowing "reader" apps like Spotify and Netflix to include an in-app link to their website for account signup. Apple said the changes "will help make the App Store an...
Read Full Article54 comments
app store blue banner

Watchdog Investigation Finds 'Major Weaknesses' in Apple's App Store Child Safety Measures

Wednesday August 25, 2021 9:31 am PDT by
The non-profit watchdog group Campaign for Accountability today released a report revealing "major weaknesses" in Apple's App Store child safety measures that allow minors to easily access adult content such as pornography and gambling. As part of its Tech Transparency Project, the watchdog group said it set up an Apple ID for a fictitious 14-year-old user and used it to download and test 75 ...
Read Full Article155 comments
idos 2 app ios

Apple to Pull 'iDOS 2' DOS Emulator From App Store

Thursday July 22, 2021 3:22 pm PDT by
iDOS 2, an app designed to allow users to play classic DOS games, will soon be pulled from the App Store, the app's creator said today. According to iDOS developer Chaoji Li, he tried to submit an iDOS update with bug fixes to the App Store, but was told that the update was rejected because it violated the 2.5.2 App Store guideline that says apps cannot install or launch executable code.Durin...
Read Full Article298 comments
tmobilelogo

T-Mobile CEO Apologizes for Data Breach, Shares Info on Future Security Plans

Friday August 27, 2021 1:03 pm PDT by
T-Mobile CEO Mike Sievert today penned a letter to T-Mobile customers apologizing for the recent data breach that impacted more than 50 million current, former, and prospective T-Mobile users. Data that included names, phone numbers, addresses, birth dates, social security numbers, driver's license and ID info, IMEI numbers, and IMSI numbers was stolen and has been offered for sale. "We...
Read Full Article87 comments
app store blue banner

Apple Pays $100 Million to Settle Developer Lawsuit and Agrees to Multiple App Store Changes

Thursday August 26, 2021 5:08 pm PDT by
Apple today announced plans to make several changes to the App Store in order to settle a class-action lawsuit that was brought against Apple by developers in the United States. Under the terms of the deal, Apple will let developers use communication methods like email to tell customers about payment methods available outside of iOS apps, and it will expand the price points that developers...
Read Full Article286 comments
app store blue banner

Developers Complain as App Store Feature Promotes Rip-Off Apps

Thursday August 5, 2021 6:12 am PDT by
Apple has featured a number of apps with disproportionately expensive subscriptions on the App Store, arousing the ire of some developers. The App Store feature on the Australian App Store, first highlighted by Beau Nouvelle on Twitter, is called "Slime relaxations" and reportedly features apps that are non-functional and seek to charge disproportionately costly in-app purchase...
Read Full Article105 comments
Mac App Store General Feature

South Korea Delays Bill That Would Ban Apple From Requiring Developers to Use In-App Purchase System

Monday August 30, 2021 7:07 am PDT by
South Korea has delayed voting on a bill that would ban Apple and Google from requiring developers to use their in-app purchasing systems, a move that would open the door to allowing third-party payment methods, representing a possible significant threat to Apple and Google's app marketplace business models. The bill, coming in the form of an amendment to the existing Telecommunications...
Read Full Article40 comments