Apple amping up requirements for app notarization starting in macOS 10.14.5
All new apps developed using a fresh Developer ID must be notarized to pass through Gatekeeper from macOS 10.14.5 onwards, Apple has advised, with the extra security process requirement landing ahead of an expansion to all macOS software in a future update.
Initially announced at WWDC 2018, Notarized Apps is an extension to the Developer ID program where developers submit their apps to Apple for review. While the security measure has been optional so far ahead of a later implementation, Apple has started the process of making notarization mandatory.
An update to the notarization support documentation advises "Beginning in macOS 10.14.5, all new or updated kernel extensions and all software from developers new to distributing with Developer ID must be notarized in order to run." While the process is changing to force new developers to notarize, the notice also points out everyone else developing macOS software will have to do so eventually, as "In a future version of macOS, notarization will be required by default for all software."
Notarizing an app involves sending the software to Apple's system for an automated scan of malicious content, as well as checking for code-signing issues. The process is just for apps distributed separately from the Mac App Store, which undergoes more rigorous checks before being made available.
If successful, the process generates a ticket developers can apply to their software, as well as publishing the ticket so macOS Gatekeeper, a security feature for enforcing code signing and verifying downloaded applications, can separately confirm the app.
At the time of installation or running the software for the first time, the ticket's presence in the app or online informs Gatekeeper that it has been notarized by Apple, and allows the process to install the app to continue. While effectively invisible to end users, notarization offers a level of assurance to users that the software has undergone some safety checks by Apple itself.
To developers, the notarization process adds extra steps to the development process, as well as for creating updates for apps, but does provide an audit trail for signed software, allowing unauthorized versions to be disabled. With the full-scale usage of notarization, it may help cut down the number of pirated or malware releases of legitimate apps, which in turn could help increase developer revenues.
While it will still be possible to install apps in macOS that have not gone through the notarization process, it will generally be a harder process for users to go through compared with one that uses Gatekeeper. From a usability perspective, developers certainly have an interest in using notarization.
Initially announced at WWDC 2018, Notarized Apps is an extension to the Developer ID program where developers submit their apps to Apple for review. While the security measure has been optional so far ahead of a later implementation, Apple has started the process of making notarization mandatory.
An update to the notarization support documentation advises "Beginning in macOS 10.14.5, all new or updated kernel extensions and all software from developers new to distributing with Developer ID must be notarized in order to run." While the process is changing to force new developers to notarize, the notice also points out everyone else developing macOS software will have to do so eventually, as "In a future version of macOS, notarization will be required by default for all software."
Notarizing an app involves sending the software to Apple's system for an automated scan of malicious content, as well as checking for code-signing issues. The process is just for apps distributed separately from the Mac App Store, which undergoes more rigorous checks before being made available.
If successful, the process generates a ticket developers can apply to their software, as well as publishing the ticket so macOS Gatekeeper, a security feature for enforcing code signing and verifying downloaded applications, can separately confirm the app.
At the time of installation or running the software for the first time, the ticket's presence in the app or online informs Gatekeeper that it has been notarized by Apple, and allows the process to install the app to continue. While effectively invisible to end users, notarization offers a level of assurance to users that the software has undergone some safety checks by Apple itself.
To developers, the notarization process adds extra steps to the development process, as well as for creating updates for apps, but does provide an audit trail for signed software, allowing unauthorized versions to be disabled. With the full-scale usage of notarization, it may help cut down the number of pirated or malware releases of legitimate apps, which in turn could help increase developer revenues.
While it will still be possible to install apps in macOS that have not gone through the notarization process, it will generally be a harder process for users to go through compared with one that uses Gatekeeper. From a usability perspective, developers certainly have an interest in using notarization.
Comments
Telltale is the list of open source that went into macOS, and while some of it is Apple's own open sourced portions of macOS, a very significant portion are from developers who may not necessarily have an Apple-ID. https://opensource.apple.com/release/macos-10141.html
The amount of malicious code development is constantly low and has been since the inception of the Macintosh. But of course, Compaq Timmy, never snapped out of his virus infested roots, did he?