Apple lays Mac App, iTunes, iOS stores double authentication groundwork
And the FlashBack security shockwaves continue to reverberate. Apple has released new Java updates for OS X Lion and Snow Leopard that include the Malware Removal Utility that detects and deletes “the most common variants” of FlashBack.
The obvious caveat there being, “most.”
But Apple has done more. After installing the Java updates for Lion and/or Snow Leopard, the first time you download any app from Apple’s Mac App, iOS and iTunes stores, you will be required to choose and answer three security questions to “help [Apple] verify your identity in the future.”
Additionally, Apple requires a Rescue Email Address, which “will only be used to send you instructions for resetting your security info if any security issues ever arise.”
And, of course, these measures only apply to Apple’s store — whatever you download and install (a.k.a. side load) from third parties leaves you wide open to all of that fun, open source, free range, unsecured stuff.
Double authentication coming to the Mac, iOS and iTunes stores? Apple’s ready to make it happen.
What is your quest?
That said, I’ve downloaded several items from the Mac, iOS and iTunes stores, and have tried logging out and then back in to see if Apple asks me (clip below the fold), “What is the air speed velocity of an unladen Swallow?”
They didn’t and I’m hoping Apple’s Mac, iOS and iTunes store security never gets to the point at some unknown time in the far distant future where Apple feels compelled to pepper me with questions that I surely will have forgotten, or remember differently, the answers to…
What’s your take?