C/C++/Cocoa tool for codesign security, Developer ID, & Mac App Store Receipt Validation
Tighten Pro - in the Mac App Store
Tighten Pro is now available in the Mac App Store.
Simply click on the icon to the left to purchase directly from Apple.
Or choose PKCS#7Viewer.app by clicking the image to the right.
Mac Developer: How Apple dodged the Heartbleed bullet
How Apple dodged the Heartbleed bullet - When it announced plans to deprecate OpenSSL in June 2011, Apple wasn't aware of the Heartbleed flaw because it didn't yet exist. However, the company was aware of other problems with OpenSSL (libcrypto), a security toolkit Apple began using within the Common Data Security Architecture more than a decade ago.
OK, fair enough. But go ahead and try creating a fresh implementation of SSL without the source code from OpenSSL as a reference.
Labels: heartbleed, security
Mac Developer: 85% of Windows XP users say they're not upgrading, antivirus company finds | VentureBeat | Security | by Devindra Hardawar
85% of Windows XP users say they're not upgrading, antivirus company finds | VentureBeat | Security - Only 15 percent of Avast customers surveyed said they planned to upgrade from XP, even though Microsoft officially ended support for the aging OS last week.
The opportunity here is to act like a grown-up software company (like IBM) and support your operating systems until your customers don't need it anymore.
How's that go again? Those that don't know history are doomed to repeat it? IBM. Dominant for 30 years.
BBC News - Half-century milestone for IBM mainframes - The first System 360 mainframe was unveiled on 7 April 1964 and its arrival marked a break with all general purpose computers that came before.
Mac Developer: Play Nintendo DS games on non-jailbroken devices with the nds4ios emulator | 9to5Mac
Play Nintendo DS games on non-jailbroken devices with the nds4ios emulator | 9to5Mac
The app gets around Apple’s restrictions by using an enterprise provisioning profile reports TourchArcade. This is normally meant for businesses to distribute apps to company employees, but nds4ios is exploiting it as a way to enable widespread app distribution. "
I'm probably not alone in thinking that the App Store is now completely overcrowded with junk that would likely not be clogging the pipes if there were simpler ways to do ad-hoc distribution.
Mac Developer: How a Chinese Tech Firm Became the NSA’s Surveillance Nightmare | Threat Level | WIRED
How a Chinese Tech Firm Became the NSA’s Surveillance Nightmare | Threat Level | WIRED
Software-defined networks will open the development of software networking solutions to hundreds of other companies and independent developers to build applications and services that communicate with hardware made by Cisco, Juniper and other companies, much the way thousands of app developers currently create differing programs to run on Apple devices today."
In a diverse garden grows a healthy ecosystem.
Mac Developer: Analysis affirms Apple's A7 processor closer to a desktop CPU than regular mobile chip
Analysis affirms Apple's A7 processor closer to a desktop CPU than regular mobile chip - When it debuted in the iPhone 5s last fall, Apple's custom A7 processor was said to have caught the chipmaking industry off guard, sending competitors into an alleged "panic." One unnamed person at Qualcomm reportedly said that the A7 left the company "slack-jawed, and stunned, and unprepared."
My favorite days are filled with undeniably great news for Apple Developers.
Mac Developer: Y Combinator may be removing VCs from its list of backers | VentureBeat | Entrepreneur | by Christina Farr
Y Combinator may be removing VCs from its list of backers | VentureBeat | Entrepreneur | by Christina Farr - That reduction in initial capital was a result of founder Paul Graham’s thesis that the cost of software development is decreasing over time.
Basically, the cost of developing software that does little or nothing is dropping. The cost of developing innovative applications that do something other than copy existing applications that do little or nothing is rising.
Labels: software engineering
Mac Developer: Mac education sales have grown in US since iPad debut, weakening Apple cannibalization worries
Mac education sales have grown in US since iPad debut, weakening Apple cannibalization worries - U.S. education sales of the Mac during the years since the iPad was introduced are higher than the comparable period before the iPad was introduced.
Finally, some good news for the Mac.
Mac Developer: Apple cofounder Steve Wozniak: Snowden 'had the guts and courage to sacrifice his life' | VentureBeat | Security | by Harrison Weber
Apple cofounder Steve Wozniak: Snowden 'had the guts and courage to sacrifice his life' | VentureBeat | Security | by Harrison Weber - “He is a hero to me, but he may be a traitor to other people and I understand the reasons for them to think that way. I believe that Snowden believed, like I do, that the US has a right to freedom. He had the guts and courage to sacrifice his life for a principle.”
The Woz has spoken.
Labels: security law
Mac Developer: Report: NSA Has Plans To Infect “Millions” Of Computers With Malware | TechCrunch
Report: NSA Has Plans To Infect “Millions” Of Computers With Malware | TechCrunch - Intelligence agencies have long considered encryption technology a threat to national security. Since the 90′s, they’ve actively lobbied for tools that allow them backdoor access to people’s devices.
That whole "single point of control" security model looks really promising until you factor in eminent domain.
Labels: security law
Mac Developer: NSA views encryption as evidence of suspicion and will target those who use it, security journalist says | VentureBeat | Security | by Tom Cheredar
NSA views encryption as evidence of suspicion and will target those who use it, security journalist says | VentureBeat | Security | by Tom Cheredar - Greenwald said the NSA is able to target encrypted communications because so few people actually use encryption tools. That makes the people who are actually trying to stay secure stick out like sore thumbs, thus making it much easier for the agency to focus its efforts on hacking the relatively small bits of encrypted data that they intercept.
I think Orwell covered this in Animal Farm.
Mac Developer: Newsweek claims it has found elusive Bitcoin creator Satoshi Nakamoto | VentureBeat | Business | by Devindra Hardawar
Newsweek claims it has found elusive Bitcoin creator Satoshi Nakamoto | VentureBeat | Business | by Devindra Hardawar - His life was a complete blank for a while. You’re not going to be able to get to him. He’ll deny everything. He’ll never admit to starting Bitcoin.
Ah, the life of a complete blank! To be cherished for sure.
Mac Developer: Snowden used cheap tools to outwit the NSA | VentureBeat | Business | by Dean Takahashi
Snowden used cheap tools to outwit the NSA | VentureBeat | Business | by Dean Takahashi - Snowden used web crawler software to “scrape” data from the NSA’s computer networks, according to an unidentified senior intelligence official interviewed by the newspaper.
It's hard not to like Edward Snowden. He's incredibly intelligent and articulate, and his actions are logically justified based on his understanding of the US Constitution. Even though I believe the NSA's programs are essential to the overall health of the nation (as long as we have people like Qaddafi running entire countries, foreign intelligence program is vital), Snowden has pointed out many activities which are clearly abusing the secrecy of the organization.
Someone like Snowden would make an excellent choice to run the NSA. Someone who could design effective programs that would serve the mission of the organization without corrupting the relationship to the populace it was designed to serve. Someone who understood the technology and would be able to identify and anticipate abuses.
I suppose I'm a liberal. I also like Noam Chomsky.
Mac Developer: Appurify launches a cloud of a thousand mobile devices for app testing | VentureBeat | Business | by Jordan Novet
Appurify launches a cloud of a thousand mobile devices for app testing | VentureBeat | Business | by Jordan Novet - The startup is launching a service to give mobile developers access to a bunch of different iOS and Android mobile devices on which they can test web-based or native mobile applications.
Number one: it shows that the web isn't really a programming standard. But HTML markup works great. Number two: great idea. Nobody could own that much hardware. And if you can, you probably have 1000 testers anyway.
Mac Developer: British spy agency said to target Apple's iPhone with remote surveillance exploit kit
British spy agency said to target Apple's iPhone with remote surveillance exploit kit - A fifth plugin — dubbed "Porus" — is referred to as providing "kernel stealth" capabilities. This could mean that the spyware is embedded in a manner similar to a rootkit, and might re-install itself automatically after being wiped.
The line between the good guys and bad guys is getting pretty blurry.
Labels: app security
Mac Developer: Obama: NSA will not hold telephone metadata, nor spy on heads of state | VentureBeat | Security | by Eric Blattberg
Obama: NSA will not hold telephone metadata, nor spy on heads of state | VentureBeat | Security | by Eric Blattberg - Trying to counter widespread criticism of the National Security Agency’s surveillance programs, President Barack Obama on Friday announced a number of reforms to the way U.S. intelligence agencies operate.
All those activities previously performed by the NSA will move to Homeland Security. Shhhh.
Mac Developer: PassMarket beats Apple to the punch with iBeacon-based mobile payments
PassMarket beats Apple to the punch with iBeacon-based mobile payments - PassMarket, first launched in 2012, is a behind-the-scenes platform that allows businesses to interact with customers using passes stored in digital wallet applications like Apple's PassBook.
Only thieves working remotely in the former Soviet Union will be able to steal money from your wallet.
Mac Developer: Planet Labs Launches 'Eyes in Sky' Satellites - Digits - WSJ
Planet Labs Launches 'Eyes in Sky' Satellites - Digits - WSJBusinesses that want to spy on clients or competitors – to see, for example, how many cars are in a retailer’s parking lot to infer sales volumes.
Possibly, the NSA is redundant because their activities have been privatized. Can't decide which is worse.
Mac Developer: Apple to take 11% of global enterprise market by 2015 thanks to iPhone 'halo effect'
Apple to take 11% of global enterprise market by 2015 thanks to iPhone 'halo effect' - Also a factor are apps, the report says. Cisco, for example, takes advantage of Apple's Developer Program to roll out its own in-house apps for employees.
In addition, Apple is making strides in security and encryption that make both iOS and OS X a viable and attractive option for government agencies.
Although I'd like to get back into developing for Windows, I can't figure out what machine I would need to buy in order to install the "free" development tools, nor whether they would allow me to build Win32 apps.
On the Android front, I believe 4.3 was default on my device when I got it shortly before the holidays. At some point in the past 2 weeks, an in-the-background over-the-air update to Chrome has made the browser unusable for one of my key tasks.
Can you imagine working on a corporate help desk and to arrive one morning to learn that 40,000 of your employees are unable to access a critical web portal because some fancy new browser feature that nobody has ever asked for is now installed systemwide without any way to roll back the change? Is anyone awake out there? Bueller? Anyone?
Labels: apple, enterprise
Mac Developer: CEO Gabe Newell explains why Valve created Steam Machines | GamesBeat | Games | by Dean Takahashi
CEO Gabe Newell explains why Valve created Steam Machines | GamesBeat | Games | by Dean Takahashi - Gabe Newell has been the de facto face of PC gaming for years. But now the Valve CEO is the face of one of the greatest threats Microsoft is facing to its Windows PC business.
I'm sure it looks appealing, but increasing control is never a real solution. It just leads to Orwellian consequences.
Mac Developer: Hackers continue to tweak Apple's obsolete iOS 3.1.3 for legacy iPhones, iPods
Hackers continue to tweak Apple's obsolete iOS 3.1.3 for legacy iPhones, iPods - Even as Apple's first- and second-generation iPhone and iPod touch gain "vintage" status, intrepid programming group "whited00r" is working to bring many of iOS's latest features, like Control Center, to the geriatric devices.
A curious nostalgia.
Labels: ios, jailbreak
Mac Developer: NSA worked on iPhone spyware to remotely monitor users, leaked documents show
NSA worked on iPhone spyware to remotely monitor users, leaked documents show - Der Spiegel asserts specialized NSA Tailored Access Operations (TAO) teams intercept incoming device shipments, carefully open packages and install spyware before sending the "bugged" units along to end users.
Makes a great case for walking into an Apple store and buying a new phone that way.
Labels: app security
Mac Developer: The One Big Question About RSA and Its Relationship With the NSA - Arik Hesseldahl - News - AllThingsD
The One Big Question About RSA and Its Relationship With the NSA - Arik Hesseldahl - News - AllThingsD - Internet security world was jolted by a Reuters report detailing a secret $10 million payment to the security company RSA from the National Security Agency.
This is a perfect example of why Timothy Leary recommended "question everything". Especially authority figures.
Mac Developer: Rumor: Chinese company pays $1 million to sponsor jailbreak for Apple's iOS 7
Rumor: Chinese company pays $1 million to sponsor jailbreak for Apple's iOS 7 - The controversy expanded when it was discovered that Taig's storefront played host to a plethora of pirated apps and that the code of the evasi0n application itself was heavily obfuscated, making it difficult for other developers to audit.
It's not unusual to be loved by anyone!
Mac Developer: genkiyooka/ScopedEarl
A quick sample project to demonstrate the use of security scoped bookmarks with respect to saving multiple files in a folder that the user has selected.
Make sure and take a look at Tighten FREE
for double-checking those entitlements.
Labels: sandbox, security scoped bookmarks
Mac Developer: Researchers find way to activate iSight cameras without alerting users
Researchers find way to activate iSight cameras without alerting users - Researchers Matthew Brocker and Stephen Checkoway outline the attack, which targets the firmware inside the iSight camera's controller chip, in a paper entitled "iSeeYou: Disabling the MacBook Webcam Indicator LED." The paper was first reported by the Washington Post.
I think it's pretty obvious that the solution is to eliminate the camera from all future Mac models. And while we're at it, let's eliminate the CPU as well. The CPU-less, camera-less Mac will make a nice prop in the suburban home of tomorrow.
Labels: security, tighten
Mac Developer: Bots are now the dominant species on the Internet, study says | VentureBeat | Business | by Barry Levine
Bots are now the dominant species on the Internet, study says | VentureBeat | Business | by Barry Levine - According to a new report from security content delivery network Incapsula, 61.5 percent of all website traffic is now non-human, while a mere 38.5 percent represents carbon units clicking things.
Bots looking for humans to market to.
Mac Developer: Goodbye athlete's foot: IBM researchers craft nanomedicine to kill fungi where other meds fail | VentureBeat | Health | by Dean Takahashi
Goodbye athlete's foot: IBM researchers craft nanomedicine to kill fungi where other meds fail | VentureBeat | Health | by Dean Takahashi - IBM researchers and a team in Singapore have taken common plastic and engineered it into a nanomedicine that is 1,000 times smaller than a grain of sand and can be used to attack fungi that are resistant to antibiotics.
Brings a whole new meaning to security and anti-virus code. It's like Neal Stephenson's Diamond Age.