Mo­jave’s new level of app se­cu­rity

Mac Format - - GENIUS TIPS -

QHow can I tell whether an app has been ‘No­tarised’? Does it make any dif­fer­ence? by Kate Perkins

ANo­tari­sa­tion is an ex­ten­sion to app se­cu­rity that’s vol­un­tary in Mo­jave. It’s aimed at giv­ing stronger con­fi­dence that apps you down­load from out­side the Mac App Store aren’t mal­ware. The sig­na­ture sys­tem that was present al­ready in pre­vi­ous sys­tems was in­tended to do that, but most Mac mal­ware is now signed us­ing black-mar­ket devel­oper cer­tifi­cates, so needs im­prove­ment.

No­tari­sa­tion in­volves two steps: apps are ‘hard­ened’, then sub­mit­ted to Ap­ple to check for mal­ware.

Hard­en­ing forces an app to de­clare in­tent to use cer­tain fea­tures, such as the in­tent to ac­cess your Mac’s cam­era. If an app doesn’t ob­tain an en­ti­tle­ment to do so, macOS won’t al­low it ac­cess. This lim­its the po­ten­tially bad things apps can do, and, cou­pled with Mo­jave’s When you first open a no­tarised app in Mo­jave, Gate­keeper’s di­a­log is dif­fer­ent, as shown in the up­per di­a­log here. new pri­vacy pro­tec­tion, stops apps from se­cretly ac­cess­ing any pro­tected data with­out your ex­plicit con­sent.

When you first open a down­loaded app that has been no­tarised, you’ll see a new di­a­log as the app goes through Gate­keeper’s sig­na­ture checks: the di­a­log’s icon lacks a yel­low warn­ing tri­an­gle, and it de­clares that Ap­ple has checked the app for mal­ware.

No­tarised apps also have an ex­tra cer­tifi­cate in­side, which you can see if you ≈- click one in Fin­der and choose Show Pack­age Con­tents. In Con­tents is a small file named CodeRe­sources, as well as the nor­mal _CodeSig­na­ture folder. You can also check us­ing the spctl com­mand in Ter­mi­nal, or Taccy (free, eclec­ti­clight.co).

Newspapers in English

Newspapers from Australia

© PressReader. All rights reserved.