undefined | Better HN

0 pointsclankyclanker5y ago0 comments

If you have #1 and the ability to collect #3, then you’re already an intermediary between the user and Apple.

At that point, what’s to prevent you from providing unacceptably slow service for the certs of those apps you don’t like and soft-locking the user out of particular apps on their own device?

0 comments

3 comments · 1 top-level

pushrax5y ago· 2 in thread

The fact that this slows down devices boils down to a rushed or simply incompetent implementation.

It's sensible to require waiting for a certificate check the first time an app is launched, but after that, the cache validity should be indefinite, and updates should occur asynchronously in batches.

The timeout settings were also excessive.

Can't forget the blatant lack of encryption. They either forgot or thought it would be too much effort to set up.

WesolyKubeczek5y ago

When you have a good broadband, it gets so easy to assume that internets grow on them trees, latency is negligible, and servers are fast and always up.

angry_octet5y ago

Yes it is ridiculous that an internet query is in the path of starting a local app for the first time in X hours. If it has to be done, it could be done in a daily batch for all apps when the connection is idle, and on install. Using bloom filters to check for recent invalidations would be even better.

1 more reply

j / k navigate · click thread line to collapse