|
|
|
|
|
|
by martin8412
2125 days ago
|
|
|
How is this any different from Windows? If your code is not signed with an EV code signing certificate, a similar warning will be shown on Windows. The difference is that, that certificate will set you back 500-600 USD a year. Though I believe you can obtain "trusted" status without a cert through people using your software and not reporting it as malware. |
|
|
The other difference is the message itself. Windows just displays a warning that the software couldn't be checked by smartscreen.[1] Once the app is used by enough people for the app to be in the smartscreen system the warning will disappear. Users will still see that the publisher is "unknown" though.[2] MacOS directs users to contact the developer that the app must be "updated" even if the only issue with the app is that it isn't notarized. A more fair message would be along the lines of "This app has not been notarized by Apple. Only run the application if you trust the source."
Code signing is intended to verify that the app actually came from who you think it came from. If the certificate for MS Word is unknown or something other than Microsoft you know something's not right and it's either been modified by a third party or not MS Word at all. Apple is using code signing to exert control over Epic Games rather than it's intended purpose to verify to MacOS users that their Unreal Engine in fact came from Epic.
1. https://www.ghacks.net/wp-content/uploads/2012/11/windows-10...
2. https://www.techspot.com/articles-info/1718/images/2018-10-0...