hoakley June 17, 2022 Macs, Technology

App security changes coming in Ventura

Contrary to repeated rumours, macOS Ventura isn’t going to lock down third-party apps to those from the App Store “like iOS”. Indeed, it brings further improvements in notarization, the app security feature supporting direct and alternative software distribution.

Apple’s Notary service

For developers, there are new and improved tools in the next major release of Xcode, which are being phased in over the coming 15 months. Xcode 13, its predecessors, and their older notarization command tool altool continue to be supported until the release of macOS 14 in the autumn/fall of 2023, when they will be replaced by support in Xcode 14 and the newer notarytool command.

In the interim, old and new methods are supported, although Apple is already giving priority to notarizations made using Xcode 14 and notarytool. If you want to continue using an older version of Xcode, you can apparently copy notarytool and stapler from Xcode 14 to use with those. For those who prefer, Apple has now added a REST API to its Notary service, documented in depth here.

Gatekeeper and notarized software

Ventura brings changes to Gatekeeper which will affect both users and developers. In the past, Gatekeeper has primarily been concerned with checking apps and other executable code which have been put in quarantine; once an app has passed those first run checks and its quarantine flag has been cleared, its notarization and signing haven’t been checked again in the same way. Apple has announced that’s changing in Ventura, where Gatekeeper will check that all notarized apps are correctly signed whenever they’re run. This will ensure that no unauthorised modifications can be made to them, without these checks imposing noticeable delays in launching.

In general, this is excellent news as it will block exploits which try to modify code within other apps, even when the malicious code is itself signed, as it has to be to run on Apple silicon Macs.

Where this could affect both developers and users is in self-modifying mechanisms for updating apps, such as the popular Sparkle. Provided the updated executable components are correctly signed by the same developer as the rest of the app, this will continue to work without any problems. Where it could catch users out is with updates signed by a different team or developer altogether, which should be unusual. Developers can then allow others to do this by specifying their team and signing identifiers in the app’s info.plist.

Diving deeper

Gatekeeper is a sub-system within macOS, rather than a single tool. One of its most important components is AMFI, Apple Mobile File Integrity, which is responsible for calling trust evaluations including certificate checks on executable code, as I explained here.

Security researchers have already been looking at how Ventura changes app security in AMFI. @theevilbit has documented what are known as Launch Constraints used by AMFI in Ventura to block system apps from being run from unexpected locations.

He has demonstrated this by copying Ventura’s Terminal.app from inside the signed and sealed System volume (SSV) to his Home folder, which turns out to be quite a challenge, at least in the Finder. While copying any of the apps on Monterey’s SSV is just a matter of holding the Option key while dragging them to a destination, every attempt in Ventura, regardless of modifier keys, results in the creation of an alias to the app, never a copy of the app. However, you can still copy third-party apps without difficulty, so long as you remember to use the Option key.

I expect that we’ll be hearing more about AMFI in the coming months.

And there’s more

Further changes coming in Ventura’s security include new controls over helper apps, launch agents and daemons, Accessory Security, and passkeys. I’ll be covering them in future articles.

14Comments

Add yours

1

JonB on June 17, 2022 at 11:35 am

Great article, as usual!

You don’t need Xcode 14 to use notarytool – it is available in Xcode 13. I know because I just used Xcode 13 on Monterey 12.4 to transition from altool to notarytool. It’s accessed via “xcrun notarytool …”. Perhaps Ventura or Xcode 14 include an updated version of notarytool, but the one included in Xcode 13 works fine for me.

What’s changed in Xcode 14 is that it similarly uses notarytool instead of altool. Apple claims that notarytool now uses a new, faster back end (4x faster) but I haven’t seen that.

I have seen a comment that notarytool is built into Ventura, so you don’t need Xcode to use it. That implies you don’t need to “xcrun notarytool” and that it’s just a regular command, “notarytool” but I haven’t tested that.

LikeLiked by 1 person
- 2
  
  hoakley on June 17, 2022 at 12:45 pm
  
  Thank you.
  I don’t know whether Xcode 14 brings an updated version of notarytool to that in version 13. However, I think 13 was the first version to include notarytool, so you’d certainly need to copy that across and call it manually from earlier versions. It might not, of course, ship standard in the first full release of Ventura, so I think I’d still play safe if I were intending to continue using Xcode 13 or earlier, although I’ll be switching to 14 before then.
  At least we have more than a year to sort this out.
  Howard.
  
  LikeLike
3

Ben Kennedy on June 17, 2022 at 5:56 pm

At the risk of straying into trivia, something I’ve wondered for years: what does the name “altool” (specifically the “al”) stand for? Its man page proclaims its mission to “Validate and Upload apps for the App Store, or Notarize apps for distribution outside of the Mac App Store.” Perhaps the “a” means “app”, but “l”?

(As a further aside, none of the “log in to leave a comment” services seems to work; clicking the icons just causes a quick redraw of the commenting frame. Tried in both Safari and Firefox, with extensions disabled.)

LikeLiked by 1 person
- 4
  
  hoakley on June 17, 2022 at 9:36 pm
  
  I have consulted with the oracle, and the answer is that it stands for Application Loader. That was one of Xcode’s tools until around version 11, when the app was removed, leaving just the command tool at its heart, altool.
  Sorry about the issue with logging in to leave a comment – I suspect someone has been tampering with WordPress again. There’s nothing that I can to to fix it, though.
  Howard.
  
  LikeLike
5

artiste212 on June 18, 2022 at 1:04 am

It’s trivial to copy Terminal.app to the desktop in Monterey, so if it’s difficult in Ventura, it’s because Apple has intentionslly made it more difficult. I’m curious why they’d do that. If Apple only wanted to prevent others from examining their software, it should be trivially easy for them.

LikeLiked by 1 person
- 6
  
  hoakley on June 18, 2022 at 6:00 am
  
  I think the explanation is in the new behaviour of AMFI, which prevents bundled apps from being run in unexpected places. That’s a good security feature, so maybe the behaviour has been added to prevent users from getting frustrated by it.
  Howard.
  
  LikeLiked by 1 person
  - 7
    
    artiste212 on June 19, 2022 at 12:29 am
    
    That’s really a lovely reason. If it’s true, I’d like to think Siri on my Mac would show the startup disk version of an application I want to run, not the (possibly older) copy on a mouted backup drive. Or would that would be asking *too* much, even from Apple?
    
    LikeLiked by 1 person
    - 8
      
      hoakley on June 19, 2022 at 11:09 am
      
      I’m not sure this will change Spotlight/Siri search behaviour, although the first app offered should be that on your current startup disk.
      One of the main functions of Spotlight is to search your backups as well.
      Howard.
      
      LikeLike
9

wowbagger (@42wowbaggers) on June 18, 2022 at 10:44 am

I wonder if this works across (major) system versions? Something like copying Ventura’s Terminal into the system following Ventura.

I’m currently relying on a copy of Monterey’s System Preferences that I pasted into my Ventura beta instance. Although Ventura initially prompted me with the “Application is corrupted” fear-monger, it eventually allowed me to use it after I went into the “Privacy & Security” part of System Settings to confirm that I allowed it to run. Since Monterey’s System Preferences works in Ventura, I suspect there is some new API/information in Ventura’s own system software (or its signature) that cooperates with AMFI.

If AMFI works across all future system versions, then if there are more system softwares that I’m disappointed with in future systems, they will be a lot more difficult to workaround this way. Ventura (and hopefully all future systems) still gives you an escape hatch–disabling SIP, so you’re not really locked out of the system. But I think most people are reluctant to disable SIP. At least I am.

LikeLiked by 1 person
- 10
  
  hoakley on June 18, 2022 at 5:17 pm
  
  AMFI works on all recent versions of macOS. It’s just that it’s behaviour is changing for Ventura. Normally such restrictions wouldn’t be expected to be applied to a boot volume group which isn’t that currently booted from, which is probably the easy way to copy bundled apps. I have no idea why you’d want to do that, though, as it’s only likely to cause problems.
  Howard.
  
  LikeLike
11

Michael Tsai - Blog - Gatekeeper Changes in macOS Ventura on August 18, 2022 at 1:30 pm

[…] Howard Oakley: […]

LikeLike
12

macOS Ventura Security and Privacy Guide - SecureMac on October 24, 2022 at 6:53 pm

[…] macOS Ventura, Gatekeeper will perform code signing checks every time an app is run — instead of at first launch as in the […]

LikeLike
13

anka213 on October 25, 2022 at 8:51 pm

How does this affect performance? It sounds costly to check the signatures every single time you launch an application.

LikeLiked by 1 person
- 14
  
  hoakley on October 25, 2022 at 8:54 pm
  
  Well, it doesn’t affect performance once the app has launched. Running Ventura on Intel and Apple silicon, I don’t notice any significant difference in launch times anyway.
  Howard
  
  LikeLike

·Comments are closed.

Share this:

Related