Hacker Read

Retr0id · 2024-05-05 18:29:09

Right, and your device knows it came from the app store because of code signing.

msbarnett | karma 12236 | avg karma 5.89 · | 2015-09-22 21:46:17+00:00

Most apps are signed nowadays, regardless of whether or not you're getting them from the store.

mahouse | karma 737 | avg karma 1.04 · | 2015-11-12 15:54:25+00:00

Same with an app that is uploaded to the iOS App Store.

cryptoz | karma 19110 | avg karma 4.75 · | 2011-12-09 17:28:32

...if the app arrived on the device from the app store.

Jcowell | karma 963 | avg karma 1.43 · | 2024-01-28 12:30:52

> Let’s say you take your app down, but someone uploads it to other app stores.

Then it would be your Apple Developer Account signing it right?

reply

foverzar | karma 462 | avg karma 0.61 · | 2024-05-23 04:05:29

Apps are signed.

shadowfiend | karma 2073 | avg karma 5.4 · | 2012-02-16 18:35:15+00:00

And is, again, instantly revokable. It'll be annoying if it's stolen, but you just revoke it, give the company the new one, and update the app in the app store (or your download, if you're not in the store). This is arguably far better than being unknowingly hit by malware.

dmishe | karma 787 | avg karma 2.56 · | 2015-09-24 23:26:51+00:00

That's not new though, Apple is the one signing the apps on the store from its launch.

visualR | karma 126 | avg karma 1.26 · | 2013-05-06 01:07:09+00:00

Correct but if your not on the app store, who will know about your app.

neurostimulant | karma 2436 | avg karma 2.07 · | 2020-11-15 21:15:18

But isn't apple store already re-sign applications code with apple's own key so they can do stuff like this? Or is it only on iOS?

joezydeco | karma 21798 | avg karma 3.0 · | 2012-07-10 17:59:31+00:00

But they do depend on Apple's signing of the app before installation on the phone, right?

plusbryan | karma 3028 | avg karma 6.68 · | 2011-03-09 21:43:13+00:00

I'm not sure if this applies to Xcode, but at least with Coda, even if you purchase it outside the App Store, it has an 'Installed' label and presumably gets updated through the App Store as well.

jeffcox | karma 250 | avg karma 3.62 · | 2016-11-07 22:21:31+00:00

You don't need to be in the App Store, you just need a signed developer certificate (99 USD/year).

bluedino | karma 19194 | avg karma 2.78 · | 2016-07-29 15:38:08

How does this work, being able to be downloaded from the app store and all?

jumbled_buffalo | karma 1 | avg karma 0.5 · | 2013-11-22 14:56:40+00:00

I signed up and got sent out a code to download the app from the app store.

andreyvit | karma 872 | avg karma 8.63 · | 2011-12-23 07:57:03+00:00

Thanks. I guess this makes sense: I can migrate from the App Store later if I'd want to.

geocar | karma 5761 | avg karma 2.88 · | 2018-10-20 08:00:36

You can still self-sign your apps.

threeseed | karma 21216 | avg karma 2.31 · | 2024-01-17 18:16:35

Because iOS apps talk to the Notarisation Service on launch.

So they know total app installs as well as the installs purchased from the App Store.

reply

jrockway | karma 72069 | avg karma 3.74 · | 2021-09-26 13:00:15

Obviously you use your vendor's "app store".

josephxanderson | karma 4 | avg karma 0.8 · | 2017-12-15 13:48:28+00:00

The only reason I say this is because it appears it does actually have to download back onto your device. So I'm not totally sure.