Annotating Apple’s Anti-Sideloading White Paper

Apple today released a white paper arguing against proposed legislation that would mandate the ability to sideload apps (and thereby alternative app stores) on iOS/iPadOS:1Building a Trusted Ecosystem for Millions of Apps”.2 I think it’s good, fair, and cogent. I highly encourage you to read it — it’s not long — then come back for my annotations below.

The paper opens with this quote from Steve Jobs, announcing the iPhone SDK:3

“We’re trying to do two diametrically opposed things at once: provide an advanced and open platform to developers while at the same time protect iPhone users from viruses, malware, privacy attacks, etc. This is no easy task.” — Steve Jobs, 2007

As ever, Steve Jobs was a succinct and forceful communicator. That “diametrically opposed” tension he described at the outset, 14 years ago, remains exactly the core of Apple’s argument in this paper today.

Page 4, under a section subtitled “This approach to security and privacy has been highly effective”:

Additionally, even users who prefer to only download apps from the App Store could be forced to download an app they need for work or for school from third-party stores if it is not made available on the App Store. Or they could be tricked into downloading apps from third-party app stores masquerading as the App Store.

This, to me, is perhaps the key point that sideloading proponents ignore. Arguments in favor of allowing sideloading on iOS, from users, tend to boil down to “It’s my device, I should be allowed to install whatever I want. If most users want to stick with the App Store, that’s fine for them and they’ll keep all the benefits as they currently stand, while I and others will have the freedom to install whatever we want.” That argument is not wrong! There would be benefits to allowing sideloading, exactly along the lines of how there are benefits to being able to install apps outside the App Store via TestFlight, enterprise distribution, and compiling apps from source code with Xcode.

Sideloading would take things to a new level though. TestFlight still requires some approval from Apple, and TestFlight distribution is limited to 10,000 users. Enterprise distribution requires an enterprise certificate from Apple. And compiling from source code requires a developer account, significant technical expertise, and, well, the source code to the app.

What the sideloading arguments ignore are the enormous tradeoffs involved. Yes, there would be benefits — a lot of cool apps that aren’t permitted in the App Store would be installable by as many iOS users as want to install them. But many non-technical users would inevitably wind up installing undesirable apps via work/school requirements or trickery that they could not be required or tricked into installing today. Consider just the example of “proctoring apps” that students are required to install for remote test taking. They’re a surveillance menace, as the EFF reported in August.

Technically, yes, on platforms that allow it, sideloading is the user’s choice. But socially and psychologically, it often isn’t.4

Page 4:

In the end, users would have to constantly be on the lookout for scams, never knowing who or what to trust, and as a result many users would download fewer apps from fewer developers.

This is another key point that cannot be overstated. As things stand today, you cannot “mess up” your iOS device by installing the wrong software. You can easily uninstall all traces of any app you do install with a tap-and-hold on the app’s icon. No app you install can entrench invisible background agents that act like system software. And because of this, hundreds of millions of non-technical iOS users install far more software on their iOS devices than they do or did on their PCs — including Macs. This, despite the fact that PCs are far more powerful devices. Typical users install more apps on their less capable phones than they do on their far more capable PCs. This is as close as we can get to proof that Apple’s App Store model on iOS hasn’t just worked, but has proven to be wildly successful and popular with users.

Related point: An app’s ability to even request access to health data, or contacts, or to create a VPN, rests on App Store review. If an app says it’s a game but requests the entitlement to prompt the user for access to health data, Apple’s App Store review will reject it. An Epic-run App Store would be making parallel and different decisions about which entitlements to grant to which apps. A sideloaded app would make those decisions for itself. Surveillance tracking would go back to “whatever the app wants to do”.

Page 9:

iPhone is used every day by over a billion people — for banking, to manage health data, and to take pictures of their families. This large user base would make an appealing and lucrative target for cybercriminals and scammers, and allowing sideloading would spur a flood of new investment into attacks on iPhone, well beyond the scale of attacks on other platforms like Mac.

Here Apple dances around the elephant in the room — the question of why iOS shouldn’t just work like the Mac with regard to non-App Store software. Apple’s deft argument is that there are far fewer Macs than iOS devices, making the Mac a less enticing target for scammers and crooks (including privacy crooks). That’s more or less the argument Windows proponents used to explain the profound prevalence of malware on Windows compared to the Mac back in the day, whilst Apple (and Mac proponents) argued otherwise, that the Mac actually was far more secure at a technical level.

But the truth Apple won’t come out and say is that it’s both. The Mac was more secure by design, but also a far less enticing target because of how many more users were (and still are) on Windows. And, today, iOS is more secure and private than the Mac. That’s the nature of the Mac as a full PC platform.

I’ll admit it: if Mac-style sideloading were added to iOS, I’d enable it, for the same reason I enable installing apps from outside the App Store on my Mac: I trust myself to only install trustworthy software. But it doesn’t make me a hypocrite to say that I think it would be worse for the platform as a whole.5

The Mac is fundamentally designed for users who are at least somewhat technically savvy, but tries its best to keep non-savvy users from doing things they shouldn’t. But you can always hurt yourself, sometimes badly, with any true power tool. The iPhone is the converse: designed first and foremost for the non-savvy user, and tries to accommodate power users as best it can within the limits of that primary directive.

Page 11:

The goal of App Review is to ensure that apps on the App Store are trustworthy and that the information provided on an app’s App Store page accurately represents how the app works and what data it will access. We are constantly improving this process: we update and refine our tools and our methodology continuously.

The problem Apple is facing today is that it’s clear that one word in the above is inaccurate: the opening “the”. The above is a goal of the App Store — and I would argue that it remains the primary goal. But clearly the App Store serves another goal for Apple: making the company money. Exhibit A: last year’s Hey fiasco. Nothing about Apple’s rejection of Hey (or, I’d wager, some number of thousands of other apps flagged by App Store review for similar reasons) was about trustworthiness. It was about money.

That’s a conflict of interest, and it detracts significantly from Apple’s entirely legitimate trustworthiness argument defending the App Store model for distribution. I remain convinced Apple wouldn’t be facing these regulatory pressures today if they’d walked away from a strategy of maximizing App Store profits years ago, and I also think they could largely dissipate these pressures today by doing it now — better late than never.

Also on page 11:

Once users download an app through the App Store, they are able to control how that app functions and what data it is able to access, using features such as App Tracking Transparency and permissions. Parents can further control what their kids buy with the Ask to Buy feature, how much time they spend on certain categories of apps with Screen Time features, and what data they share. Users are also able to centrally manage all app-related payments, and are able to easily view and cancel subscriptions that are paid for via In-App Payments. These controls could not be fully enforced on sideloaded apps.

All of this is true. But that last point, that all in-app subscriptions are listed in an obvious location, where it’s easy to unsubscribe, and you get email notifications before every renewal, is the singular reason why I think Apple should not — and should not be forced to — allow in-app purchases and especially subscriptions via developers’ own payment systems. What I endorse is allowing apps to direct users to the web to make purchases and subscriptions. In-app purchases vs. out-app purchases. Let Apple earn its cut by showing that in-app purchases have higher conversions.

My favorite example is The New York Times — by all accounts a reputable and trustworthy company. Subscribe to the Times in-app, where Apple gets a cut, and you can easily unsubscribe at any time with two taps in the Settings apps. Subscribe to the Times on their website, and you literally have to call them on the telephone and argue with a Times rep whose job is to talk you out of unsubscribing.

The current in-app purchase requirements are incredibly reassuring to me, as a user. I subscribe to many publications and services through in-app purchase that I would not subscribe to otherwise. Let apps offer the ability to use their own purchasing systems, but make it clear they’re doing so on the web, not in-app. (That’s what Hey does — and people trust Hey because they trust the company behind it.)

Page 12, in a list of statistics of App Store “protections in action in 2020”:

Apple deactivated 244 million customer accounts due to fraudulent and abusive activity, including fake reviews. It also rejected 424 million attempted account creations due to fraudulent and abusive patterns.

My reaction to these numbers: Jiminy!

Assuming these number are accurate, they explain Apple’s seeming nonchalance to the continuing existence of scam apps that do get into the App Store, and the pervasiveness of fraudulent reviews. They’re catching the overwhelming majority of them.

I still say: not good enough, especially on the task of identifying and eliminating successful scams. But, still, wow, those are big numbers. 


  1. Apple actually only talks about the iPhone in the white paper — the word “iPad” doesn’t appear once. But iPadOS and iOS are exactly the same in every regard discussed in the paper. I think Apple wisely focused on iPhone to keep it simple. I’ll do the same, and write only “iOS” as shorthand for “iOS and iPadOS” (and WatchOS and tvOS, for that matter). ↩︎

  2. It’s a PDF, not a web page, which is typical for “white paper” type things. But the biggest downside to publishing it as a PDF is that it’s hard to read on a phone, which feels at least slightly ironic. (Kudos to Apple though for the PDF’s svelte 295 KB file size, despite being illustrated throughout.) ↩︎︎

  3. Amusingly, Apple had to source Jobs’s quote to TidBITS’s archived copy of Jobs’s open letter announcing the SDK, because Apple never gave it a permalink at apple.com. In his preface to TidBITS’s hosted copy of the letter, Adam Engst wrote:

    Some things need to be in the permanent record, and since Apple didn’t see fit to give a permanent URL to Steve Jobs’s letter announcing that Apple would be creating an SDK for third party iPhone native applications, I’m reproducing it below for future reference.

    Even Apple apparently now agrees the letter belongs in the permanent record. ↩︎︎

  4. As an aside, this is why it would be a terrible idea to enrich WebKit into a full technical peer to native apps, or allow alternative web rendering engines empowered with such features, as many web developers shortsightedly, and recklessly (and perhaps selfishly) desire. As things stand, WebKit allows users to go anywhere they want on the web, and install any web apps they want as apps on their iOS home screens — but WebKit’s limits are such that they can do so without concern or any degree of technical savviness because WebKit only offers functionality that is safe, secure, and private. Not to mention the fact that a world where any mobile app could be written as a pure web app would inevitably quickly devolve into a world where most apps are identical on iOS and Android, which is neither good for Apple nor for iOS users who prefer truly native iOS apps that fit in with Apple’s system-wide design idioms and integrate with iOS’s unique features. ↩︎︎

  5. My spitball idea for sideloading would be for Apple to create a “developer mode” on iOS devices that allows for Mac-style sideloading of apps. Something that requires a paid Apple developer account. No one is going to get tricked or bamboozled into signing up for a $100/year ADC account. And when (not if) some users who enable it wind up installing foolish software, “developer mode” is a pretty good way of saying “you should know better”. And disabling “developer mode” would, if possible, render inert any software on the device installed via this means. Just my spitball. ↩︎︎


‘I Swallowed One of My AirPods’ 

Bradford Gauthier, in The Guardian:

Heather drove me to the endoscopy centre, where the AirPod was got back out via my mouth using a tube with a lasso attachment. It was extremely uncomfortable, but I was sedated and so only half awake. A few minutes later, I was given the AirPod in a neat little bag.

I tried it as soon as I got home. It works fine, although the microphone is less reliable than it was. I’ll never know for certain how I managed to swallow it; my theory is that it dropped on to the pillow, ended up next to my mouth and got sucked in when I yawned. In retrospect, I’m glad the “find my AirPod” attempt didn’t work — I would have freaked out if my throat had beeped.

Takes (more than) a licking, keeps on ticking.

(Via MacDailyNews.)

NYT: ‘Tech Giants, Fearful of Proposals to Curb Them, Blitz Washington With Lobbying’ 

Cecilia Kang, David McCabe, and Kenneth P. Vogel, reporting for The New York Times:

WASHINGTON — In the days after lawmakers introduced legislation that could break the dominance of tech companies, Apple’s chief executive, Tim Cook, called Speaker Nancy Pelosi and other members of Congress to deliver a warning.

The antitrust bills were rushed, he said. They would crimp innovation. And they would hurt consumers by disrupting the services that power Apple’s lucrative iPhone, Mr. Cook cautioned at various points, according to five people with knowledge of the conversations. […]

Ms. Pelosi pushed back on Mr. Cook’s concerns about the bills, according to two people with knowledge of the conversations. When Mr. Cook asked for a delay in the Judiciary Committee’s process of considering the bills, Ms. Pelosi pushed him to identify specific policy objections to the measures, said one of the people.

You don’t have to read the dateline to know which side this leaked from.

At the end of the article:

Representative Pramila Jayapal, a Democrat from Washington and a co-sponsor of the bills, said the lobbying is “making our case that they have way too much power in terms of monopoly power and in terms of money and politics.”

“Small business and consumers have no hope of competing with this amount of money and power,” she said.

The fact that the companies are pushing back, and making their cases against the legislative proposals, is proof that they’re doing wrong? Maybe Jayapal’s quotes here are taken out of context, but if not, this is absurd. I mean of course a “small business” isn’t going to be able to compete against companies with trillion dollar market caps. And the core of the argument — from all of these companies, but Apple in particular — is that consumers aren’t being harmed at all by the status quo, and in fact would suffer if the legislation (particularly Jayapal’s bill) is passed.

Also, the Times’s capitalization of “Big Tech”:

Executives, lobbyists, and more than a dozen groups paid by Big Tech have tried to head off bipartisan support for six bills meant to undo the dominance of Amazon, Apple, Facebook and Google.

is embarrassing. They’re not a cabal. They’re in fact intense competitors — most of their relations are hostile (Apple-Facebook), and at best are frosty (Apple-Amazon).

Morgan Stanley Bans Unvaccinated Staff and Clients From New York Office 

Paul R. La Monica and Rob McLean, CNN Business:

Morgan Stanley plans to ban workers from its New York headquarters if they have not received a Covid-19 vaccine. The rule will apply to non-vaccinated guests and clients as well.

Get vaccinated or stay home.

Newsstand 1.0 

This is absolutely delightful: Newsstand is a new Google News RSS reader … for Mac OS 9. From creator Alex Robb:

I created Newsstand as a fun way to access the news on my vintage Macs. I have a two Apple PowerBook G3 computers, but older machines don’t work very well on the modern web. Their browsers can’t load https websites, and vintage hardware can’t keep up with the dynamic pages that make up the web today. I created Newsstand in Mac OS 9 using tools only available at the time.

He even made the website on Mac OS 9.

As a sidenote, this is the best new app icon I’ve seen in years. Newsstand’s exquisite 3D icon is a jarring reminder of just how boring today’s flat icon aesthetic is.

Brave Search Now in Public Beta 

Brave:

Brave Search is available in beta release globally on all Brave browsers (desktop, Android, and iOS) as one of the search options alongside other search engines, and will become the default search in the Brave browser later this year. It is also available from any other browser at search.brave.com. […]

Brave Search is different from other search engines because it uses its own index and follows different principles:

  1. Privacy: no tracking or profiling of users.
  2. User-first: the user comes first, not the advertising and data industries.
  3. Independence: Brave has its own search index for answering common queries privately without reliance on other providers.
  4. Choice: soon, options for ad-free paid search and ad-supported search.
  5. Transparency: no secret methods or algorithms to bias results, and soon, community-curated open ranking models to ensure diversity and prevent algorithmic biases and outright censorship.
  6. Seamlessness: best-in-class integration between the browser and search without compromising privacy, from personalization to instant results as the user types.
  7. Openness: Brave Search will soon be available to power other search engines.

I’m interested to see how it compares to DuckDuckGo (my default for several years now) in daily driving.

Roger Montti at Search Engine Journal had good things to say about it last week:

Brave search is currently in testing mode. So it’s not fair to make judgments on an unfinished product. That said, the quality of the search results that I have seen are outstanding in terms of usefulness. […]

There is a lack of clutter in Brave that sets it apart not only from Google but from Bing and DuckDuckGo. After using Brave, I suspect that a reason why I have not embraced Bing, despite liking Bing’s search results, is that Bing feels similar to Google.

Brave on the other hand offers me something different that feels just right and makes me want to return to it, something I’ve never felt using any other Google competitor.

Update: Biggest thing I dislike about Brave Search is the font. It’s a typeface called Poppins that, almost unbelievably, is a free font from Google.

‘This One Email Explains Apple’ 

Matthew Panzarino, in a piece published just before WWDC:

An email has been going around the internet as a part of a release of documents related to Apple’s App Store-based suit brought by Epic Games. I love this email for a lot of reasons, not the least of which is that you can extrapolate from it the very reasons Apple has remained such a vital force in the industry for the past decade. […]

This efficacy is at the core of what makes Apple good when it is good. It’s not always good, but nothing ever is 100% of the time and the hit record is incredibly strong across a decade’s worth of shipped software and hardware. Crisp, lean communication that does not coddle or equivocate, coupled with a leader that is confident in their own ability and the ability of those that they hired means that there is no need to bog down the process in order to establish a record of involvement.

A truly remarkable email exchange, and a model of clarity and conciseness.

Feature-by-Feature System Requirements for Apple’s 2021 Operating Systems 

Josh Centers, writing at TidBITS:

We’re all eagerly awaiting iOS 15, iPadOS 15, macOS 12 Monterey, and watchOS 8, but will they run on the devices you have now? Apple continues to do an excellent job of supporting old devices, but many iPhone and iPad features will require at least an A12 Bionic chip. On the Mac side, some of the new features require an M1 processor.

Overall, maintaining support for old devices while restricting certain new features to more capable recent models is a great strategy. That way, fewer people are forced to buy new hardware just to participate, but the new features encourage hardware upgrades for those who want to take advantage of them.

It’s a testimony to Apple’s commitment to device longevity that iOS 15 will run on A9-based iPhones (2015’s iPhone 6S and 2016’s original iPhone SE). Of course they don’t get all the new features. The Android world is nothing like this.

Centers’s article is a detailed rundown of which devices get which features that were announced at WWDC two weeks ago.


The New York Times: ‘Sundar Pichai Faces Internal Criticism at Google’

Daisuke Wakabayashi, reporting for The New York Times:

It is hard to argue that things aren’t going great for Google. Revenue and profits are charting new highs every three months. Google’s parent company, Alphabet, is worth $1.6 trillion. Google has rooted itself deeper and deeper into the lives of everyday Americans.

But a restive class of Google executives worry that the company is showing cracks. They say Google’s work force is increasingly outspoken. Personnel problems are spilling into the public. Decisive leadership and big ideas have given way to risk aversion and incrementalism. And some of those executives are leaving and letting everyone know exactly why.

Fifteen current and former Google executives, speaking on the condition of anonymity for fear of angering Google and Mr. Pichai, told The New York Times that Google was suffering from many of the pitfalls of a large, maturing company — a paralyzing bureaucracy, a bias toward inaction and a fixation on public perception.

I think there’s something interesting going on here, but Wakabayashi’s lede is far juicier than the meat of the article warrants. I’d argue that it boils down to the fact that Pichai has transformed Google into a more focused, and perhaps more boring, company, and that his internal critics preferred the old Google culture — one that did things just because they seemed clever or cool, not because they were necessarily strategically useful to the company. Google Glass, for example.

A comparison to Apple (shocking, coming from me, I know) is apt. Apple has touted that when it comes to product ideas, they have “a thousand no’s for every yes”. Coincidentally, that WWDC-opening video is from 2013, the same year Google Glass became available. In 2013, Steve Jobs’s death was still a fresh emotional wound. But that “thousand no’s for every yes” mantra wasn’t defining a new Apple, it was clarifying that post-Jobs Apple would remain the same Apple. Here’s Jobs at that extraordinary open-question session at WWDC 1997, at the very start of the Apple-NeXT reunification that marks the beginning of modern Apple, explaining that “Focusing is about saying no.”

It seems undeniable that under Pichai, Google is more focused: more no’s, fewer yes’s. The sources in Wakabayashi’s report clearly want more yes’s. Maybe they’re right! Google is quite obviously a different company with a very different culture than Apple. But the results under Pichai, so far, are pretty good.

Here’s one of the examples cited by Wakabayashi:

A common critique among current and former executives is that Mr. Pichai’s slow deliberations often feel like a way to play it safe and arrive at a “no.”

Google executives proposed the idea of acquiring Shopify as a way to challenge Amazon in online commerce a few years ago. Mr. Pichai rejected the idea because he thought Shopify was too expensive, two people familiar with the discussions said.

But those people said that they had never thought Mr. Pichai had the stomach for a deal and that the price was a convenient and ultimately misguided justification. Shopify’s share price has increased almost tenfold in the last few years. Jason Post, a Google spokesman, said, “There was never a serious discussion of this acquisition.”

One former executive said the company’s risk aversion was embodied by a state of perpetual research and development known internally as “pantry mode.” Teams will stash away products in case a rival creates something new and Google needs to respond quickly.

One person’s overcaution is another’s focus. 


David Cicilline’s Anchoring Strategy 

Ben Thompson, writing last week about the four legislative proposals released by the House Subcommittee on Antitrust:

I don’t think it is an accident that these bills were presented as a package, but I think it has been a mistake in a lot of coverage to view the package as one bill. It seems to me that Chairman Cicilline has played his cards very deftly here: start with the fact that while every bill was authored by a Democrat, they all have a Republican co-sponsor; if some combination of these regulations pass they will likely be with overwhelmingly Democratic support, but the fact they are starting out as nominally bi-partisan efforts is savvy.

The real tell about Cicilline’s strategy, though, is the seeming contradictions between his own bill and that of Representative Jayapal. Cicilline seeks to restrict platforms from behaving in non-discriminatory ways, with the threat of break-up if they don’t, while Jayapal jumps straight to break-up. This strikes me as an anchoring strategy: Jayapal’s approach is both unworkable and undesirable — it leaves the FTC and ultimately the courts as the ultimate arbiter of what is part of a core platform’s offering and what rests on top, and not only does that evolve as technology matures, it also makes it impossible to deliver an experience that is approachable for regular consumers. As I noted above, is a networking stack part of an operating system? Is a browser? Is an App Store? Moreover, Jayapal’s bill, if enacted, makes Cicilline’s bill immaterial: there would be nothing to discriminate against.

That’s why I suspect that Cicilline’s goal is to stake out the most extreme position — the Jayapal bill — with the goal of getting his own bill passed as a compromise, perhaps with Scanlon’s as well.

Here’s Thompson’s description of Jayapal’s bill:

[I]nstead of banning discriminatory behavior it simply bans platforms from owning any product or service that rest on top of its platform and compete with 3rd-parties in any way. The provision is as broad as it sounds, which is interesting to think about in a historical context: operating systems used to sell the networking stack separately — would it be illegal now for iOS to include TCP/IP? That’s just one obvious example of how this bill would quickly devolve into product design by the judiciary.

I don’t think it’s any exaggeration to say that the Jayapal bill would profoundly change Apple and all of Apple’s products, platforms, and above all, services — in ways that ultimately would be ruinous for the company as we know it. It’s a “throw the baby out with the bathwater” bill that betrays a profound misunderstanding of how platforms evolve. Even if it is just an anchoring strategy to make Cicilline’s own bill look moderate in comparison, Apple should be extremely concerned that Jayapal’s bill is even on the table.

Simris 

My thanks to Simris for sponsoring DF this week to promote their algae-based omega-3 supplements. One third of the matter in your brain is literally made of omega-3, and many people eat fish and take fish oil as an omega-3 supplement. But the source of omega-3 is algae — not fish. Fish get their omegas from eating algae. Simris Algae Omega-3 is a completely plant-based and superior alternative to fish oil and krill, without the mercury, PCB, and dioxins, and without harming our oceans.

Simris is a Swedish pioneer company growing microalgae. They save and protect endangered marine habitats by replacing unsustainable marine ingredients, and proudly combine Scandinavian innovation and design at its finest.

Everything about Simris’s products is just really nice: from their website to their packaging to the actual capsules. Just take a look at how nice their ad looks here on the DF sidebar. Great design through and through.

Apple’s ‘Trusted Partners’ for iCloud Private Relay Include Akamai, Fastly, and Cloudflare 

Dan Rayburn, writing for Streaming Media Blog:

On Monday, Apple announced some new privacy features in iCloud, one of which they are calling Private Relay. The way it works is that when you go to a website using Safari, iCloud Private Relay takes your IP address to connect you to the website and then encrypts the URL so that app developers, and even Apple, don’t know what website you are visiting. The IP and encrypted URL then travels to an intermediary relay station run by what Apple calls a “trusted partner”. In a media interview published yesterday, Apple would not say who the trusted partners are but I can confirm, based on public details (as shown below; Akamai on left, Fastly on the right), that Akamai, Fastly and Cloudflare are being used.

It’s a little weird that Apple doesn’t want to talk about who these “trusted partners” are, because if we don’t know who they are, how are we supposed to trust them? Putting your name on a product or service is a badge of trust.

Restoring a Badly Damaged Watch 

If you find this as soothing and satisfying to watch as I do, you’ll enjoy a few others in this fellow’s YouTube channel. (Via Sebastiaan De With.)

The All-Star Mac Bundle Featuring Parallels Pro 

My thanks to Stack Social for sponsoring DF last week to promote The All-Star Mac Bundle Featuring Parallels Pro — a fantastic deal on some great Mac utilities. The bundle features five award-winning Mac apps for just $25 with coupon code: ALLSTARMAC, including the one used by over 7 million people to run Windows software on their Macs: Parallels. You’ll score a year’s subscription to the latest version, plus lifetime access to FastestVPN, BusyContacts, Moho Debut animation software, and PDFChef.

$25 is a great price just for Parallels Pro alone.


The Talk Show Remote From WWDC 2021, With Craig Federighi and Greg Joswiak

Special guests Craig Federighi and Greg Joswiak join me to discuss the news from WWDC 2021: the all-new multitasking interface in iPadOS 15, on-device Siri, new privacy controls in Safari and Mail, MacOS 12 Monterey, and more.

Brought to you by these outstanding sponsors:

  • MacPaw — Get started with the free version of CleanMyMac X and install Setapp to get 200+ curated Mac apps for free.
  • Flatfile — The data onboarding platform for any company that relies on migrating data from point A to point B, as intuitively as possible.
  • Linode — voted the Top Infrastructure as a Service Provider by both G2 and TrustRadius. Use this link and get $100 in credit when you create a free account.

Extra special thanks to my friends at Sandwich for their deft work on the video. 


Some Details on How Spatial Audio Will Work With AirPods on Apple TV 

Igor Bonifacic, writing for Engadget:

Apple told Engadget the feature will work with stereo, 5.1, 7.1 and Dolby Atmos content. Whether you’re using a pair of AirPods Pro or AirPods Max, the software that powers the feature will widen the soundstage so that it seems like the entire room you’re in is being filled with sound. When you sit down to watch a movie or TV show, the included head tracking feature will lock in after it detects you’ve been looking in the same direction for a while. Once you get up to walk around, it will reactivate. Connecting your AirPods to an Apple TV is also easy in this context. When you’re near the device with your headphones, it will display a popup that will allow you to quickly connect, and you won’t need to dig into the settings menu.

Magneto: ‘These New “Magnetic” Vaccine Mutants Are Extremely Disappointing’ 

Alexandra Petri, writing for The Washington Post:

I am Magneto, and I would like to register a complaint. Frankly, all of these new mutants are terrible. […]

I met the people who were saying that metal objects now stuck to them because of their vaccines and gave them a whole recruitment speech about how they were the next stage in evolution, but once I said the word “evolution,” they looked at me doubtfully. Then I asked them to show off their abilities, and — I hate to say this but, have you ever been at a friend’s amateur magic show, where the magic show is not going quite as was hoped, and there’s a lot of saying “hold on” and “wait, hang on” and “sorry” as they fail several times running to identify your card, and then a dead bird falls unprompted out of someone’s hat? Frankly, that would have been an improvement.

We have our first nomination for the 2021 Pulitzer for commentary.

Trump Department of Justice Subpoenaed Apple for Records of Democrats and Their Family Members 

The New York Times:

As the Justice Department investigated who was behind leaks of classified information early in the Trump administration, it took a highly unusual step: Prosecutors subpoenaed Apple for data from the accounts of at least two Democrats on the House Intelligence Committee, aides and family members. One was a minor.

All told, the records of at least a dozen people tied to the committee were seized in 2017 and early 2018, including those of Representative Adam B. Schiff of California, then the panel’s top Democrat and now its chairman, according to committee officials and two other people briefed on the inquiry. Representative Eric Swalwell of California said in an interview Thursday night that he had also been notified that his data had been subpoenaed. […]

Moreover, just as it did in investigating news organizations, the Justice Department secured a gag order on Apple that expired this year, according to a person familiar with the inquiry, so lawmakers did not know they were being investigated until Apple informed them last month.

Adam Schiff:

Trump repeatedly demanded the DOJ go after his political enemies.

It’s clear his demands didn’t fall on deaf ears.

This baseless investigation, while now closed, is yet another example of Trump’s corrupt weaponization of justice.

And how much he imperiled our democracy.

OldOS: iOS 4 Rebuilt in SwiftUI 

Holy hell this new project from Zane Kleinberg, a talented 17-year-old developer who just dropped this out of the blue yesterday. It’s available via TestFlight (the first one is full already, though) and as open source code you can build yourself.

It’s exquisitely well done, very fun to play with, and surprisingly usable. And what a remarkable testimony to the expressiveness of Swift UI.

Once you get past the surface aesthetic differences, it’s also interesting as a way to remember how many little things iOS has added over the years. iOS is so much richer now. You couldn’t do anything in list views back then. E.g., if you wanted to delete a note in Notes, you had to open the note and tap the Trash button. In a view hierarchy, you couldn’t go back just by swiping from the left edge of the display — you had to tap the Back button in the navigation bar at the top of the display. Going back to this simulacrum of iOS 4 reminds me of what it felt like going back to, say, System 6 (1988) after taking for granted all the various little things added to the Mac between then and Mac OS 8.6 (1999).

A decade is a long time. Even the 1990s — the most dysfunctional decade of Apple’s corporate existence — was a productive one for the Mac. Now, though, with Apple firing on all cylinders throughout the 2010s, iOS 4 feels joyful but crude, barren of small conveniences.

A Linus Torvalds Rant We Can All Get Behind 

Linus Torvalds, on the Linux Kernel mailing list:

Please keep your insane and technically incorrect anti-vax comments to yourself.

You don’t know what you are talking about, you don’t know what mRNA is, and you’re spreading idiotic lies. Maybe you do so unwittingly, because of bad education. Maybe you do so because you’ve talked to “experts” or watched youtube videos by charlatans that don’t know what they are talking about.

But dammit, regardless of where you have gotten your mis-information from, any Linux kernel discussion list isn’t going to have your idiotic drivel pass uncontested from me.

A shrinking violet, as ever.

Our Long National HBO Max Apple TV Nightmare Is Over 

Screen Times:

At the end of last week we detailed an update to the HBO Max Apple TV app that introduced a whole host of issues, making the app almost unusable. Check out our article for the very long list. The issues were so bad that HBO exec Andy Forssell even addressed them in a reply to John Siracusa on Twitter.

Thankfully, HBO has now issued a software update that reverts the playback UI to the original tvOS version. I’ve verified this in the 50.30.2 update and can confirm everything is back to normal from skipping ahead to asking Siri ‘What did they say?’ and everything in between.

You make a mistake, you fix it as fast as you can. Kudos, HBO Max tvOS team.

Someone should send this to the new team behind the MLB app.

Blade Runner: The Animated Series 

Fun work by Tom McWeeney.

Some New MacOS 12 Monterey Features Are Unavailable on Intel-Based Macs 

Joe Rossignol, writing for MacRumors:

On the macOS Monterey features page, fine print indicates that the following features require a Mac with the M1 chip, including any MacBook Air, 13-inch MacBook Pro, Mac mini, and iMac model released since November 2020:

  • Portrait Mode blurred backgrounds in FaceTime videos
  • Live Text for copying and pasting, looking up, or translating text within photos
  • An interactive 3D globe of Earth in the Maps app
  • More detailed maps in cities like San Francisco, Los Angeles, New York, and London in the Maps app
  • Text-to-speech in more languages, including Swedish, Danish, Norwegian, and Finnish
  • On-device keyboard dictation that performs all processing completely offline
  • Unlimited keyboard dictation (previously limited to 60 seconds per instance)

Apple has not explained why any of these features are not available on Intel-based Macs. For what it’s worth, Google Earth has long offered an interactive 3D globe of the Earth on Intel-based Macs both on the web and in an app.

I don’t think Apple has to explain. These features all clearly are built on code that uses features exclusive to Apple Silicon. E.g. for Portrait Mode in FaceTime, it uses the M1 imaging pipeline — the same thing that makes all FaceTime footage on the M1 MacBooks look so much better than on any Intel MacBook, even though the camera hardware is the same. The speech/dictation features on this list are surely using the Neural Engine, something Intel Macs don’t even have.

Digging Into Apple’s iCloud Private Relay 

Good overview of one of this week’s biggest announcements from Dave Hamilton for The Mac Observer:

Apple’s iCloud Private Relay works similar to a VPN in that it routes your traffic through other servers, hiding your IP address from the websites you visit, and hiding your traffic from whomever manages your local network. Where it differs is that a VPN is generally just one server between you and the website you’re visiting. With a VPN, your traffic takes the route of You ↔︎ VPN Server ↔︎ Website. Private Relay adds another server to the mix, which ensures that no one in the chain — not even Apple — can see the whole picture: You ↔︎ Apple’s Ingress Server ↔︎ Content Provider’s Egress Server ↔︎ Website.

This is, as Apple calls it in their “Get Ready for iCloud Private Relay” WWDC Session on the topic, “Privacy by Design.”

Apple made specific mention that while the “Ingress Proxy” servers are run by Apple, the “Egress Proxy” (aka the server which communicates with the websites you visit) is not controlled by Apple and is under the control of “a (trusted) content provider”. This means that Apple doesn’t know what site(s) you’re visiting, and the third-party content provider doesn’t know who you are.

I’m using this on both an iPhone and iPad running the new OS betas, and it doesn’t seem to slow anything down. I did run into a problem where initially, both devices were saying I needed to upgrade to a paid iCloud account to enable the feature in Safari (also for Mail’s new tracker privacy protection), even though I’ve got an Apple One family account. I “fixed” that by restarting both devices after poking around the iCloud section in Settings. Not a bad bug for a developer beta 1 — just figured I’d mention it here in case anyone else runs into it.

What’s New in the App Store Review Guidelines 

Not a lot new this year, but this one jumped out to me:

5.1.1(v): Apps supporting account creation must also offer account deletion.

I don’t see how anyone could disagree that this is a good rule. There’s a lot to complain about in the App Store Guidelines but there’s also a lot that’s unambiguously pro-user.

The Verge: ‘Facebook Plans First Smartwatch for Next Summer With Two Cameras’ 

Alex Heath, for The Verge:

Facebook is taking a novel approach to its first smartwatch, which the company hasn’t confirmed publicly but currently plans to debut next summer. The device will feature a display with two cameras that can be detached from the wrist for taking pictures and videos that can be shared across Facebook’s suite of apps, including Instagram, The Verge has learned.

A camera on the front of the watch display exists primarily for video calling, while a 1080p, auto-focus camera on the back can be used for capturing footage when detached from the stainless steel frame on the wrist. Facebook is tapping other companies to create accessories for attaching the camera hub to things like backpacks, according to two people familiar with the project, both of whom requested anonymity to speak without Facebook’s permission.

Sounds right. A tiny concealable camera to take surreptitious photos that upload to Facebook sounds exactly like something Mark Zuckerberg came up with himself.

Yours Truly on CNBC’s TechCheck Today 

I enjoy doing these quick hits on CNBC. I get on, I get a few questions, I answer as best I can, and I’m out. Two tidbits on my spot today:

  • It seems like a widespread misconception that iCloud+ is a new additional paid tier. It’s not: “iCloud+” is now just a name for any paid tier of iCloud, even the $1/month tier. If you pay anything at all for iCloud, you get iCloud+ features like the new Private Relay feature for Safari.

  • Another question was about the relative dearth of AR announcements. I pointed to Maps, which is clearly moving in a very AR direction with turn-by-turn directions. But another big AR announcement from Apple this week is RealityKit 2, with 3D Object Capture using nothing more than your iPhone or iPad camera. (Or a DSLR or drone camera.) This makes creating AR objects based on real-world objects several orders of magnitude easier, faster, and more accessible.

Billboard: ‘Eddy Cue Believes the Future of Music Isn’t Lossless — It’s Spatial Audio’ 

Eddy Cue, in an interview with Micah Singleton for Billboard:

One of the first people that told me about Dolby Atmos was Adam Levine. I happen to know him, and we were in the same place, so he was like, “Have you listened to this?” And he sends me this song and he was really excited. He said, “I can’t believe what I can do with this.” It’s going to be really exciting to see how this evolves, and all of what artists are going to be able to do with this, and how exciting it is for fans and listeners to be able to do this.

So we went after the labels and are going to the artists and educating them on it. There’s a lot of work to be done because we have, obviously, tens of millions of songs. This is not a simple “take-the-file that you have in stereo, processes through this software application and out comes Dolby Atmos.” This requires somebody who’s a sound engineer, and the artist to sit back and listen, and really make the right calls and what the right things to do are. It’s a process that takes time, but it’s worth it. […]

To me, when I look at Dolby Atmos, I think it’s going to do for music what HD did for television. Today, where can you watch television that’s not in HD?

One of the advantages music has over television is you can’t take an old TV show and truly up-res it to HD because it was shot on low-quality cameras. But in the case of audio, all these things were recorded on multiple tracks, and so it’s possible to go back to a lot of the songs and be able to do this.

The article is behind Billboard’s “Pro” paywall on their website, but the full interview is available on Apple News — and it seems to work even if you’re not a News+ subscriber.

Apple’s WWDC Newsroom Announcements 

Collected here for posterity:

Might as well toss in a permalink to the keynote, too.

Adobe Announces Native Apple Silicon Versions of Illustrator and InDesign 

Jasmine Whitaker, writing for Adobe:

Today, we’re thrilled to announce that Illustrator and InDesign will run natively on Apple Silicon devices. While users have been able to continue to use the tool on M1 Macs during this period, today’s development means a considerable boost in speed and performance. Overall, Illustrator users will see a 65 percent increase in performance on an M1 Mac, versus Intel builds — InDesign users will see similar gains, with a 59 percent improvement on overall performance on Apple Silicon.

Specific things like opening complex documents and scrolling are even faster than those overall numbers: Adobe claims scrolling in Illustrator is 4× faster. Just from porting to run natively on Apple Silicon.

And we’ve only seen Apple’s consumer Apple Silicon chips for Mac.

Playdate Update 

Like a little mini keynote from Panic about their little mini gaming device. Don’t want to spoil anything but I burst with joy when I saw the first non-game app for Playdate. Perfect.

‘Philly Vax Sweepstakes’ 

Speaking of playing the lottery, Philadelphia is getting in on the lottery-for-getting-vaccinated trend:

Philadelphia Mayor Jim Kenney announced today the launch of “Philly Vax Sweepstakes,” a series of three citywide drawings designed to give Philadelphians extra motivation to get their vaccination against COVID-19 as the city fully reopens this summer.

A total of 36 vaccinated Philadelphians will win cash prizes up to $50,000, totaling nearly $400,000 in giveaways. In each of the three drawings on June 21, July 6, and July 19, six individuals will win $1,000; four will win $5,000; and two will win $50,000.

I really do love the idea of these lotteries and giveaway promotions. It’s innumeracy that leads some people to grossly miscalculate the risks vs. rewards of getting vaccinated, and it’s innumeracy that leads people to play lotteries. Sweepstakes for getting vaccinated put innumeracy to work.

WWDC 2021: Day One in a Nutshell 

I was hoping Serenity Caldwell would be doing these daily wrap-ups again this year. (Got a bunch of things I was hoping for today — maybe I should play the lottery.)

Quill 

My thanks to Quill for sponsoring last week at DF. Quill is a new messaging app for teams, made by people who love messaging — many of them grew up on IRC. Messaging is their favorite way to collaborate, but not if it’s overwhelming or disorganized. Unlike a lot of messaging platforms, Quill looks great — on both iOS and MacOS.

It’s a more deliberate way to chat. Try it for free.

Becky Hansmeyer: ‘A Few Thoughts on the Eve of WWDC’ 

Becky Hansmeyer:

It’s not about giving in to every little demand being lobbed at them. It’s about collecting information, determining what the right thing to do is, and doing it the Apple Way. When Apple does that and does it right, the results are fantastic.

Let’s hope we see some of that Apple shine through this week.

Theme Parks and Public Parks 

Good column (and video) from Joanna Stern on Apple’s “walled garden”. The people who use the term “walled garden” in this context typically do so as a pejorative. But that’s not right. Literal walled gardens can be very nice — and the walls and gates can be what makes them nice. That’s been a recurring theme in the testimony from Apple executives in the Epic trial. Asked about rules and limits on iOS that Epic presents as nefarious — nothing but tricks to lock users in — Apple witnesses typically responded by presenting them as features. That iOS is wildly popular not despite the “walls”, but because of them.

It’s a trade-off, for example, that anything you can install on iOS can be trivially uninstalled just by deleting the app icon from your home screen. The downside is that iOS doesn’t support any third-party ideas that would require system-level background agents or extensions. I can name dozens of great Mac utilities that I’d enjoy, if not love, on iOS, but which can’t exist on iOS because of the rules. That sucks. But those same rules mean there’s no way to mess up your iPhone or iPad by installing something you don’t like and which is difficult to uninstall. That’s great.

Better than “walled garden”, I like the comparison to theme parks. People love theme parks. Not everyone, of course, but a lot of people. They’re fun, safe, and deliver a designed experience. They’re also expensive, and the food, to put it kindly, generally sucks. Public parks are great too — in very different ways. We should have great public parks, and we should have great open computing platforms. But not every park should necessarily be public, and not every closed computing platform would be better off open.

HBO Max tvOS Update Breaks a Slew of Features 

Screen Times:

The bottom line is, the viewing experience in the HBO Max app is now horrifically bad and almost unusable unless you’re planning just to play and pause. If you need to do anything else, don’t get your hopes up.

The fact that they completely broke fast-forwarding and rewinding is mind boggling. Those aren’t exactly obscure power user features. Just use the standard video player. I don’t know how this update shipped. (The worst part is, my wife and I are hooked on Mare of Easttown, and have been binging it all week. Really sucks not being able to do anything except play and pause.)

Internal Letter Circulates at Apple — and Leaks to The Verge — Pushing Back Against Returning to the Office 

1,400 words to say they’d prefer a policy that allows teams within Apple to determine their own remote work policies. Good communication is to the point, and this is not to the point at all. No wonder the letter-writer(s) feel “unheard”. It’s hard to get through the whole letter, and if you do make it through, it reeks of self indulgence. Some serious ✊🍆 vibes. The “formal requests” at the end about employees with disabilities and the “environmental impact of returning to onsite [sic] in-person work” are such transparent pandering. (I have never once heard of Apple not doing whatever it takes not only to accommodate employees with any disability, but to make them feel welcome.)

And who are these people who took jobs at Apple not knowing the company’s on-site culture? Do they think Apple built a new $4 billion campus on a lark? Three days a week on site and two days remote is a huge change for Apple.

Given that these letters keep leaking to Zoe Schiffer at The Verge, I can’t help but think that the problem for Apple is that they’ve grown so large that they’ve wound up hiring a lot of people who aren’t a good fit for Apple, and that it was a mistake for Apple to ever hook up a company-wide Slack. Companies are not democracies, but the employees writing these letters sure seem to think Apple is one. It’s not, and if it were, the company would sink in a snap. Apple’s new “three days on site” policy wasn’t a request for comments — it was a decision — and Tim Cook’s company-wide letter already leaves room for individual teams to adjust it to their own needs.

Former Blogger Donald Trump’s Facebook Ban Extended at Least Two Years 

Nick Clegg, VP of global affairs at Facebook:

We are today announcing new enforcement protocols to be applied in exceptional cases such as this, and we are confirming the time-bound penalty consistent with those protocols which we are applying to Mr. Trump’s accounts. Given the gravity of the circumstances that led to Mr. Trump’s suspension, we believe his actions constituted a severe violation of our rules which merit the highest penalty available under the new enforcement protocols. We are suspending his accounts for two years, effective from the date of the initial suspension on January 7 this year.

As part of this decision, Facebook is rescinding the special privileges heretofore extended to world leaders and political figures that largely exempted them from Facebook’s content policies on the grounds of “newsworthiness”.

Dithering 

New month, new cover art.

June 2021 cover art for Dithering, featuring a young man in cap and gown celebrating graduation.

Dithering, of course, is the now year-old podcast from Ben Thompson (CEO) and yours truly (President). Two episodes per week, 15 minutes per episode. Not a minute less, not a minute more.

Sign up for now to hear post-WWDC-keynote thoughts on Tuesday morning. Subscriptions are just $5/month (good deal) or $50/year (great deal). And your subscription will work in every popular podcast app — now including Spotify, if that’s your bag, baby.

KeyboardCleanTool 

Free Mac utility from Andreas Hegenberg, developer of BetterTouchTool and BetterSnapTool:

KeyboardCleanTool is a super simple little tool which blocks all Keyboard and TouchBar input.

In 2011 Apple rejected the app for the Mac App Store because apparently it’s “not useful”, however I often use it to clean my MacBook keyboard without producing annoying input.

I have also heard of people who use it to let their toddlers pretend they work on a computer.

The app has been around for 10 years, but I don’t recall hearing of it before. It’s more useful than ever today, because modern MacBooks will power on with the press of any key on the keyboard. It used to be that you could wipe your keyboard clean while powered down, but Apple changed that a few years ago, apparently because a fair number of users were confused how to turn their MacBooks on, now that the power/Touch ID button has no power icon. (Joanna Stern and I talked about this on the most recent episode of The Talk Show.)

KeyboardCleanTool is a great solution.

Update: See also: Shaun Inman’s Little Fingers, a similarly-purposed utility that also blocks input from the mouse/trackpad.

Bing Censors Image Search for ‘Tank Man’, Even in U.S. 

Joseph Cox, writing for Vice:

Bing, the search engine owned by Microsoft, is not displaying image results for a search for “Tank man,” even when searching from the United States. The apparent censorship comes on the anniversary of China’s violent crackdown on protests in Tiananmen Square in 1989. […]

Bing displays ordinary, non-image search results for “tank man” when searching from a U.S. IP address; the issue only impacts the Images and Videos tabs. Google, for its part, displays both when connecting from the same IP address.

Motherboard verified that the issue also impacts image searches on Yahoo and DuckDuckGo, which both use Bing. Neither company immediately responded to a request for comment.

George Orwell, 1984:

In the walls of the cubicle there were three orifices. To the right of the speakwrite, a small pneumatic tube for written messages, to the left, a larger one for newspapers; and in the side wall, within easy reach of Winston’s arm, a large oblong slit protected by a wire grating. This last was for the disposal of waste paper. Similar slits existed in thousands or tens of thousands throughout the building, not only in every room but at short intervals in every corridor. For some reason they were nicknamed memory holes. When one knew that any document was due for destruction, or even when one saw a scrap of waste paper lying about, it was an automatic action to lift the flap of the nearest memory hole and drop it in, whereupon it would be whirled away on a current of warm air to the enormous furnaces which were hidden somewhere in the recesses of the building.

PDF Diff 

Another Mac utility worth your attention: Alexander Jaehrling’s PDF Diff is a $20 app for comparing the text differences between two PDFs. Last July I asked:

What’s the best tool for diffing PDF files? Is it Acrobat? Tell me it’s not Acrobat. But if it’s Acrobat OK I’ll break a years-long streak and install Acrobat.

PDF Diff wasn’t out at the time, but I wish it had been. It’s the best tool I’ve found for this.