...use it the way Apple wants you to use it.
I heard about this recentlly, when Larry Dignan, editor in chief of ZDNet wrote at his blog about the rumor -- now confirmed as fact -- that
Apple apparently can disable App Store software remotely on your iPhone 3G. The iPhone calls home and poof the application is nuked.
That was enough to make my head explode. But Dignan continued:
the ability to simply deauthorize apps already installed on an iPhone is worrisome.... Is this something to be outraged about? Yes, it's creepy...
But then he went on to suggest that
assuming the company doesn't abuse its privileges the remote nuking capability may not be such a bad idea.
Its privileges? It's now a "privilege" that corporations may control what we do with their products once we've bought them?
Dignan isn't the only one who feels this way. Baltimore Sun tech blogger David Zeiler thinks the "kill switch is a necessary evil":
Unless an app contained malicious code that escaped detection, Apple would have no reason to kill it.
Of course not. What possible reason could Apple have for, say, zapping an app that lets an iPhone circumvent whatever corporately synergistic joint ventures Apple might have in place, like how iPhone owners can use only AT&T as their service provider?
I think the kill switch is exactly what it appears to be: an emergency-use-only tool for Apple to prevent malware from getting a toehold on the fledgling iPhone platform.
It's so sweet that Zeiler has so much faith in Apple. And anyway, all us babies crying about invasion of privacy and so on will love Apple for it someday:
I also wonder how the iPhone community will react when a clever hacker sneaks some nasty code into an otherwise innocent-looking app and it slips by Apple's screening process. It's inevitable.And just as predictably angry iPhone owners will expect Apple to come to the rescue.
At that point millions of iPhone owners will be grateful for the kill switch, regardless of how they feel about it now...
See? It's always so awesome when corporations treat us like children, and their our stern-but-loving daddy. It makes me feel all warm and cuddly and loved and protected. So next we'll get the iGun that prevents criminals from shooting it? Yeah, I didn't think so. Corporate interference that saves us? No way. Corporate interference is only okay when it protects the corporation.
Good to know. I'll be sure to keep my MacBook Air Supreme running OS Eleventy-One off the Internet for good, when I buy it in 2010, lest Apple zap any material on the hard drive it doesn't like. That'll be real practical, won't it?
(For the record, I don't have an iPhone, and probably won't until the AT&T-only restriction goes away.)
(Technorati tags: Apple, iPhone, evil, technological fascism)
Disclaimer: I haven't read the WSJ article, mostly because I apparently have to pay $89 to do so. They may present facts that makes what I have to say below moot.
Much hay has been made about Jonathan Zdziarski's discovery of what appears to be a blacklist file in the depths of the iPhone OS. It's important, I think, to get the technical details right, here, because equating what he found with Apple being able to "nuke applications" is somewhat hyperbolic.
Zdziarski found URL buried inside the Core Location libraries that points to data file on Apple's website that looks like it's structured to hold a blacklist of applications. But: There were no applications in the list. There file was found as part of Core Location (the iPhone OS libraries that handle the location-awareness features of the phone -- the GPS and friends), not as part of the general OS. And (and this is important) nobody knows what the semantics of the list are. That is, nobody knows what will happen if an application is on the list.
It *may* be that the application will uninstall itself. But that's not *necessarily* so, however. The effects of the blacklist may just be to disable Core Location services for that application without otherwise impeding it. Or it may force the application to quit until an update is run from the App Store.
In any case, I'm of two minds about the amount of control Apple should exert over this kind of thing. The coder in me wants the iPhone to be a totally open platform -- every service and feature of the phone fully exposed, with applications unregulated by anyone. But there are problems with that (software quality aside). Phones aren't like computers; they have access to lots of sensitive information (who you call, where you are, what you're saying, what the camera is pointing at, etc). Totally unrestricted applications could easily be used for all kinds of nefarious purposes.
So, Apple has put several levels of restrictions in place. First of all, the scope of applications that can be built for the iPhone is limited in a number of important ways : applications can't see each other's data, or run in the background. Access to some services is very limited (the camera, for example), and access to others is subject to overrides outside of the application's controls (Core Location, for one).
Apple's legal terms with its developers also restrict the kinds of applications they can write -- for example, you can't write an iPhone application designed to operate your automobile.
Second, there's an approval process for applications -- you send your application to Apple, they decide if it's OK to go on the store or not. Theoretically, obvious malware could be caught like this. It doesn't look like Apple are doing a great job at this; the approval times for many applications -- and updates to them -- is very long, and they aren't enforcing any kind of concrete quality bar. And, as usual will Apple, the whole process is totally opaque; there's no specific policy on what they will or won't allow in the Store, and nothing to say why an app was removed from the store (even, apparently, to the folks who wrote the application!)
Third, there are (apparently) some kinds of after-sale interventions Apple can do to disable, restrict, or remove software that's already been installed on an iPhone. Exactly what the scope of those interventions are is (as far as I know) unknown. I can certainly envisage malware that you'd want to be able to remotely because it's impacting other users -- a game that runs network denial-of-service attacks in the background, locking out traffic from local wifi access points, for example.
(another possible scenario is where an application is violating intellectual property rights -- should Apple be able to remotely wipe the application, or just stop selling it?)
That's not what's happening -- it's more like Apple being able to turn off your spinning hubcaps. Your car is still capable of doing all of the car-like stuff.
(second disclaimer: I work as an iPhone developer (but not for Apple), and probably have a vague pro-Apple bias).
Well, that's the thing. It's always easy to envisage *good* things that can be done with great power. But it's also always easy to envisage *bad* things that can be done with it.