Why does it take 2 years to realise that macOS has been checking signing certificate validity online?
How macOS checks executable code before it’s loaded and run, in macOS 10.15 and 11.0. Covering integrity checks using hashes, and validity of the signing certificate, on Intel and ARM.
Although most were worried about Apple’s failure to deliver upgrades to Big Sur, the most serious problem left many users unable to launch any apps.
If you have no other option and can be certain there’s no danger in doing so, you can remove a signed app’s signature. But it may not be so simple.
When macOS won’t let you open an app or other software because it warns that it’s (possibly) malware, here’s how to check the signatures.
The benefits of code signing for Mac users explained. How certificates are revoked, and what happens when they are. And there’s more to signatures than just the certificate.
Why many had problems, what they are exactly, what you can do about them, and how they should be prevented.
Where does macOS store a list of revoked certificates, and how does it keep them up to date? The answer isn’t perhaps what you expect.
Imagine going to open an app which you use daily, only to be told by macOS that it “will damage your computer” and must be trashed. Can we have confidence in Apple?
How to check whether a macOS Installer app still has a valid signature, and where to find its hidden Installer packages.