Hardening and notarization finally arrive in Catalina

One of the last of Catalina’s promised features, hardening and notarization become fully mandatory for all new apps from today.

Hardened runtime, sandboxing and XPC services

Jeff Johnson of @lapcatsoftware has just published an excellent technical article looking at controversial issues over hardening, sandboxing, […]

How has XProtect changed?

Apple’s pushed update to XProtect’s data a couple of days ago is one of the most substantial since […]

Security changes coming in Catalina: what’s changed

What to expect from the many changes to security and privacy in the first release of Catalina. How to run non-notarized apps, and more.

Changing security makes privacy protection confusing

Apple’s recent change in requirements for notarization also affects privacy protection in both Mojave and Catalina.

How to recognise properly-notarized apps with Taccy 1.3

How can you tell whether a notarized app has been hardened, which Apple claims makes it more secure?

Last Week on my Mac: Notarization devalued?

Many small independent developers have put a lot of effort into getting their app notarized. Then Apple changes the rules. What does this mean for users, and our security?

The ‘hardened runtime’ explained

Newly-built apps supplied by developers outside the App Store need now to be notarized. This in turn requires hardening, but what is that?

Notarization made a bit simpler

You don’t have to add an Info.plist to a standalone Mach-O tool in order to sign it, or to get it notarized successfully. And more tips.

What is SIP and when is it safe to turn it off?

System Integrity Protection can get in your way, and may be recommended to solve compatibility problems. It’s also changing again in Catalina.