Stepping through the stages in security checks made on a notarized Mach-O binary command tool, in Ventura 13.4.1 2 years ago, and now in Sequoia 15.4.1.
AMFI
Most could live with slight delays when launching major apps. But when they’re as long as 30 seconds, and it’s an Apple silicon Mac, an explanation is required.
SHA-256 hashes are used in code signatures and security as a means of identification and verification. They bring a substantial computational burden, and can be very slow in some Intel Macs. Plus a new version of Dintch for integrity checks.
Why can apps take many seconds or even minutes to launch on some Macs? More results to puzzle and perplex, and a strategy to address the problem.
Opening Pages can take several seconds, and other apps can hang around for 30 seconds before they’re ready to use. Is it XProtect, online certificate checks, or what?
Security in macOS is designed and applied in multiple layers to remain effective even when one layer is bypassed, and herd protection determines types of attack.
What and where is the Gatekeeper app or service? The answer is that it’s a collaborative system or technology to check apps and ensure that only trusted software is run.
Is macOS going to be like iOS? Not in Ventura, where notarization is improved with additional security checks. Here are the details.
App translocation, signature checks, XProtect and more explained, with key messages from the log to help you diagnose problems.
How have checks of notarization changed what happens when you open a quarantined app in Catalina? What does XProtect do?
The Eclectic Light Company 