Digital signing for OS X Mountain Lion
Posted: Fri Feb 17, 2012 9:11 am
OS X Mountain Lion, due out this summer, will change the type of apps allowed to run. The default will be to only allow (1) apps from the Mac App Store and (2) apps from outside the app store that have been digitally signed by the developer with a certificate issued by Apple. The two other choices for this setting will be to allow "Mac App Store only" or apps from "Anywhere." BZFlag is distributed outside the Mac App Store, so it would be easiest for users if the game were digitally signed by the BZFlag team.
There is no approval/rejection process beforehand for either the app or the developer. Nor is there any fee. As I understand it, developers simply sign up for a free developer account, fill out an automated form, and the server instantly spits out a certificate file to use for signing the app.
Apple's idea here is to provide a small amount of security for apps not approved by Apple for it's app store. Signing links the binary to the developer's identity, giving Apple a kill switch if the developer turns evil. It also verifies to the OS that the binary wasn't tampered with by someone other than the developer. Yet at the same time, the kill switch and the restrictions on what apps are allowed to run are easily bypassed or disabled by the user.
More info here and here.
There is no approval/rejection process beforehand for either the app or the developer. Nor is there any fee. As I understand it, developers simply sign up for a free developer account, fill out an automated form, and the server instantly spits out a certificate file to use for signing the app.
Apple's idea here is to provide a small amount of security for apps not approved by Apple for it's app store. Signing links the binary to the developer's identity, giving Apple a kill switch if the developer turns evil. It also verifies to the OS that the binary wasn't tampered with by someone other than the developer. Yet at the same time, the kill switch and the restrictions on what apps are allowed to run are easily bypassed or disabled by the user.
More info here and here.