Sure; but technical features can certainly make security better.
Like, iOS makes most unsafe actions incredibly clear. Apple pay always requires the user to double tap the power button. The OS makes it impossible for an application to charge you money through apple pay without an explicit user action.
Phone apps also can't take control of my entire device, or steal my cookies or cryptolocker my hard drive. Any program you download and run from the internet on a desktop computer can do all of this stuff and more. We shouldn't allow that stuff by default on desktop computers either.
Phones have the right idea. I just don't want Apple and Google to be the only ones who can modify the system at the OS level.
Double taping to pay is actually making things worse for tech illiterate users. There's a lot of scam games on the appstore and it's way to easy to fall into it if they aren't too careful.
And then no, it's not clear for me (even as a developer!) how data transfer between apps work, how the advertising id works and how much data Apple and Google really have that they shouldn't. If it's not clear to me as a software engineer, it certainly isn't for your average user.
The browser is just a much easier mental model, especially that I can install an ad blocker on it to make them safer, which I can't on mobile apps.
> Phone apps also can't take control of my entire device, or steal my cookies or cryptolocker my hard drive.
It never happened once with my parents in 15 years of running Ubuntu. Even if that stuff somehow existed, I don't think they would have the tech knowledge to mark the downloaded virus as executable anyways.
> The browser is just a much easier mental model, especially that I can install an ad blocker on it to make them safer, which I can't on mobile apps.
I'd like that security model to be the default for desktop apps on my computer as well. Its weird that davinci resolve and spotify and all the rest have full access to look through all my files.
> It never happened once with my parents in 15 years of running Ubuntu.
Probably just because so few regular people use ubuntu, scammers & malware authors don't bother targeting it. Still good for your parents though!
> I'd like that security model to be the default for desktop apps on my computer as well. Its weird that davinci resolve and spotify and all the rest have full access to look through all my files.
That's how it works on Ubuntu, proprietary apps are usually distributed through snaps which are sandboxed. And unlike on mobile, the OS doesn't have an advertising ID or built-in ad networks.
Normal apps don't need that though because there's a chain of trust which doesn't exist on mobile.
> Probably just because so few regular people use ubuntu, scammers & malware authors don't bother targeting it. Still good for your parents though!
No, it's because the bar on publishing on Ubuntu is much much higher than on an iPhone. Nobody would ever accept those scam casino games on Ubuntu.
As a rule, yes. Both Apple and Google are horrendous stewards of their respective storefronts. Their review processes are infamously capricious and black boxes, in the case of Apple they put additional moral rules on what the app is allowed to do, and in spite of that capriciousness, scamware still regularly makes it's way onto the App Store. (Scamware defined here as having a specific set of anti-features[0] that a user would ordinarily pay to remove.)
This one isn't even hard to argue against; Apple being a good steward for its storefront was true in 2011. It is no longer true today. I'd consider a tech-illiterate user less likely to randomly lose a lot of cash by using different storefronts from the Apple App Store (or again, the Google Play Store), if only because those different storefronts actually do a bit of curation instead of focusing on quantity over quality.
[0]: Most of the ones listed here apply that aren't "non-free dependency" or are meant to be a category filter like NSFW. I'd also throw in "microtransactions to unlock basic functionality", but F-Droid effectively bars those with other inclusion rules. https://f-droid.org/docs/Anti-Features/
Yes I do, none of those scam games you have on iPhone would be allowed to be published on Ubuntu.
The app review process on the appstore isn't designed for the user's benefit but Apple's benefit. There's no problem publishing a casino game but if your app doesn't pay the tax, be sure that it will be rejected.
Like, iOS makes most unsafe actions incredibly clear. Apple pay always requires the user to double tap the power button. The OS makes it impossible for an application to charge you money through apple pay without an explicit user action.
Phone apps also can't take control of my entire device, or steal my cookies or cryptolocker my hard drive. Any program you download and run from the internet on a desktop computer can do all of this stuff and more. We shouldn't allow that stuff by default on desktop computers either.
Phones have the right idea. I just don't want Apple and Google to be the only ones who can modify the system at the OS level.