[flukus]

> Most laptop OSes, like Windows, macOS, and Linux, are a decade behind mobile OSes in terms of application sandboxing and also still lagging behind on restricting OS tampering and implementing reliable chains of trust from the system software to the hardware level, e.g. features like secure enclaves.

Desktops/Laptops come with decades worth of software that I do trust. Applying trust at the application level or at a permissions prompt is too late, for the average user it has to be handled by the OS vendor, much like linux distros and apple do. Users mostly just click to allow everything, even most tech savy ones.

The android and possibly iOS sand boxing also does a poor job of protecting against things like user tracking.