In which I attempt to be pragmatic. Are you allowed to run whatever computer program you want on the hardware you own? This is a question where freedom, practicality, and reality all collide into a mess. Google has recently announced that Android users will only be able to install apps which have been digitally signed by developers who have registered their name and other legal details with…
I don’t see how, because kinda by definition if you’re allowing side loading, the program can essentially do anything. Even if you make a really secure system, there’s nothing you can do if people willingly give the program permissions.
Unless there’s some way to know what a program will actually do rather than what someone says it’ll do. Pretty sure that’s impossible if we can’t even figure out the halting problem though.
This isn’t an argument against side loading. I just don’t see how you can get away from the inherent risk.
How is this not also the case for non-sideloaded apps?
Technically true, but if it’s in a store, Google/Apple/whatever, presumably it’s been reviewed. Doesn’t mean it can’t have malware in it, but that’s the protection stores offer. Side loaded apps could be from anywhere and it’s generally on the user to figure out if it’s trustworthy or not. Unless you’re reviewing the code yourself, you’re taking the word of someone.
And what happens when those reviewed apps are still malicious? Like say, Tiktok?
There’s never no risk. Only less risk. Far less risk in fact.
You want no risk? Write your own app.