> So basically all the stuff that makes apple devices actually measurably better has to be opened up so that some rando can make a half hacked together attempt at compatibility?

Only the interfaces and protocols. This is not the interesting or expensive part, unlike the implementation. Apple can still have the best implementation of the protocol, and a lot of people will believe that this is the case.

> For what?

So that people are not locked into the ecosystem when they buy the device. The price for the phone is what they pay, not what they will be forced to pay later, for example by only being able to choose airpods or apple watch for full experience later. For example.

> I don't want random bluetooth earbuds from the petrol station to be able to access an API that lets them send transcripts of my calls anywhere they like

First, don't buy them, you don't have to. Second, technically, the API exposed by the device will first need to allow them to connect somewhere online and send any data. That's a separate issue. Not to mention that, hypothetically, if bluetooth airbuds were able to send data somewhere by themselves, a malicious airbud manufacturer could still use the protocols by reverse engineering them. Not necessarily the case with legit manufacturers. Such lockin only stops legitimate, non-malicious actors.

> and I definitely don't want a low barrier to entry for devices that can airdrop me stuff or paste to my macbook if I'm out and about.

Allowing everyone and anyone to airdrop you stuff is a bad idea anyway. The protocol was reverse engineered too.

> I'd be happy because I have never once bought a non-apple device that I care about connecting to my phone. I'd have to buy a new monitor but that's ok.

And a lot of other Apple users wouldn't be happy.

> All consumer tech right now is literally rebadges or mild modificatioins of stuff from AliExpress and I don't want that in my nice clean ecosystem.

A lot is not. Again, just don't buy it, you have to choose to let such devices to connect to your device.

> If these competitors want to actually compete then how about they make something that's actually better in some way instead of just hamfistedly copying whatever Apple comes up with?

A lot of the time they legitimately want to, but Apple locks them out of certain features. For example, AFAIK, Garmin watches (legitimate company! with an original take on a smartwatch, definitely not copying Apple) are locked from accessing certain iOS features Apple Watch can access.

I replied to someone else in the same vein but having had a garmin watch in the home there was nothing that it would have done better if it was able to work with Apple's proprietary stuff. If random devices of unknown provenance were able to freely connect with Apple devices then the security of Apple's ecosystem would take a hit. This would be bad.

> I replied to someone else in the same vein but having had a garmin watch in the home there was nothing that it would have done better if it was able to work with Apple's proprietary stuff

Maybe to you. Garmin watches cannot respond to notifications on Apple devices, for example. Detailed article about restrictions on iOS from Pebble: https://ericmigi.com/blog/apple-restricts-pebble-from-being-...

> If random devices of unknown provenance were able to freely connect with Apple devices then the security of Apple's ecosystem would take a hit. This would be bad.

Random devices are not able to connect over bluetooth to your device without your consent. Then, the bluetooth device can only get as much information as the companion app will allow it to get.

Besides, we have that on Android (and PCs) and the security of these "ecosystems" is not worse because of it.

Your argument seems a little bad faith. Sure, random devices aren't able to connect to my phone without my consent but Apple devices only need that consent once. After they're on my apple account they can connect with my other apple devices seamlessly, no companion apps at any stage.

My AirPods move from my phone to my macbook all by themselves based on which device needs audio and my macbook can ask for my iphone's camera and mic at will. My Apple devices can do this because they have hardware level security to allow for this. The EU wants the same capabilities to be extended to non-apple devices.

This would mean that Apple would have to let devices connect without a companion app and possibly make a backdoor in their hardware security layer or worse allow anyone to incorporate their hardware security into any device.

If some aliexpress buds were able to do that then this would definitely pose a problem. Bad actors should not get access to Apple's proprietary security tech and that tech is one of the reasons that Apple devices have capabilities which non-apple devices do not.

edit: Your original comment makes a couple of good points re: the cost of lockin for consumers. However, I would like to point out that this cost isn't a problem when the locked in devices are as good as they are. Apple's devices routinely either come near to the top or sit at the top of the list of best X devices from many different review sources. If their locked in devices were worse this would make sense but often they are much better than all of their competition. I wouldn't buy any AirPod competitors because they genuinely don't actually represent better value even when they are cheaper than AirPods. Similarly with other devices, I've tried almost everything at one point or another. The first time I used Android I installed it myself on an HTC HD2. When I ditched windows I went with linux before I went with Apple. I've had powerful self built windows machines and Asus gaming laptops and a google pixel and a pebble and tried many more devices without actually owning them myself. Nothing has ever come close to my apple silicon macbook, my old iphone which I'm still using, my 2nd hand cheap ipad mini or my apple watch. I don't buy apple devices because I'm locked in and have no other choice, I buy them because they actually represent good value for me and my use case.

Disney owns the land and their intellectual property, Apple does not and should not own devices and software they already sold. Especially not by imposing artificial software restrictions.

i’m not a fan of apple, but they do build and own their IP and i respect their right to license it on terms they decide. Is it not expropriating them to suddenly say “mighty fine business you made there mister, your competitors who happen to be our citizens would like a piece of that so how about you just hand over some chunks of it so nothing bad should happen to the rest of it?”

Their rights to license stuff they sell should not be unlimited, that's the entire point.

I understand that your second sentence refers to the fact, that the limitation is only in EU. Businesses have to respect local laws. Laws often mentioned in the thread (DMA, GDPR, although we can only suspect that these are the reasons for this lock) apply equally to everyone who wants to do business in Europe. If Apple does not want to respect these laws, they are free to leave. Even better, they can make changes to their devices that work only in EU and leave it as it already is in other countries. Said "competitors" do not necessarily need to be EU citizens, I'm sure many US companies would use that opportunity too.

Local regulations are not foreign to Apple, apparently similar laws are in force in Japan.

As for "some chunks" - interfaces are not protected by copyright, even in the US. Assuming DMA is the problem, nobody is asking for Apple to release details of their implementation, just for them to remove artificial software restrictions that lock apps from other vendors from doing (a small subset!) of stuff only Apple can do.

Smartphones are general computing devices. Apple and Google are a duopoly in the smartphone market, while restricting what users can do with their devices more than Microsoft ever restricted what Windows users can do with Windows. If we continue allowing these companies to go in that direction, we will end up with computers that are as limited as game consoles are, Apple and Google will be the only beneficiaries of that situation.

there are just and unjust laws.

i agree that to operate in a country (or block of countries) a company must be prepared to respect even the unjust laws. which apple has obviously been willing to do all day long in many parts of the world.

in this case, it really seems to me like the EU is harming consumers who benefit from the coherently-designed, safe (as compared to androland) walled garden in favor of some fairly overtly xenophobic power play against incumbents local champions cannot compete with on the merits. IMO this type of action directly invites retaliation against European companies and interests abroad.

in the related cases of airdrop interop and alternate stores, it is certainly being required that apple release its proprietary IP to competitors.

there are plenty of hungry competitors in the smartphone market beyond apple and google including Samsung huawei and scores of others.

I don't find the laws unjust in any way. Apple did everything they could to take half of the smartphone market, and to me it's totally understandable that the EU government may want to limit their power over this market.

> in this case, it really seems to me like the EU is harming consumers who benefit from the coherently-designed, safe (as compared to androland) walled garden in favor of some fairly overtly xenophobic power play against incumbents local champions cannot compete with on the merits. IMO this type of action directly invites retaliation against European companies and interests abroad.

Apple consumers will still be able to benefit from this amazing walled garden by choosing not to buy non-Apple devices. Other consumers will be able to choose other vendors that will be able to fully interoperate with Apple devices. I don't see any loses for current Apple consumers.

As for the retaliation. Maybe. Remains to be seen. Introducing any regulations brings risk.

> in the related cases of airdrop interop and alternate stores, it is certainly being required that apple release its proprietary IP to competitors

What proprietary IPs?

> there are plenty of hungry competitors in the smartphone market beyond apple and google including Samsung huawei and scores of others.

In terms of operating systems you have these two. I don't think Huawei counts, aren't they sanctioned still? Harmony OS has a very small share in EU either way.

consumers are harmed because Apple is forced to build in a way that expands its qa surface to include hypothetical tbd third-party integrations thus worsening their products, and surely opening up to more fines by the same EU who set them up like this in the first place.

those who stand to benefit from unjust laws are rarely the ones who acknowledge their nature.

in your previous response you seem to claim that samsung is an insignificant player in the smartphone market, and that integrating third-party app stores doesn’t require divulging security-related IP so i’m going to drop the mic right here.

> EU has defined Apple (but not Google(!)) as a "digital gatekeeper"

Could you explain what you mean? The following article lists Alphabet as a gatekeeper.

https://digital-markets-act.ec.europa.eu/gatekeepers_en

> So if they bring this system in, something which is listening to people real time and using online AI models to translate things, EU might force them to let _any_ 3rd party AI replace it.

If you allow the third party to do that, yes.

> And when someone installs TotallyHonest Co. AI to replace it and there's a massive data leak where they just stored every conversation as-is in an open S3 bucket, who gets the PR flak on HN?

I see this argument often, as often as I hear about leaks. Do you have an instance where Apple was blamed for a leak from a third party? I never heard anybody blaming Apple for Tea app leaks for a recent example, and it is still available on App Store.

Also, an alternative translation app does not have to be provided by a totally random third party vendor. Companies that to me are just as trustworthy as Apple surely will provide alternatives too - Google, OpenAI, Meta, Microsoft or Anthropic.

So I really don't see what's your point here. Don't install the alternatives if you don't trust them.

Can't reference a leak or incident specifically, but when Foxconn (a massive company with 3/4 million employees) had workers jumping from their dormitories and installed "suicide nets" the headlines were always "Apple factory..." - and I checked multiple sites at the time.

Even though quite literally every single piece of major western technology is assembled in Foxconn factories.

It's purely because dissing Apple brings clicks and people arguing on comment sections and social media posts.

--

And about 3rd party translation AI systems. Of course _I_ won't install suspicious ones, but how do you make sure Auntie Liz won't? If you provide an option to do so, grifters will get less tech literate folks to install any kind of crapware.

> Can't reference a leak or incident specifically, but when Foxconn (a massive company with 3/4 million employees) had workers jumping from their dormitories and installed "suicide nets" the headlines were always "Apple factory..." - and I checked multiple sites at the time. Even though quite literally every single piece of major western technology is assembled in Foxconn factories.

Apple chose Foxconn. It won't get to choose the third parties implementing alternative translation apps. That's the point.

I see that I wasn't specific, but I thought it's obvious given the context.

> And about 3rd party translation AI systems. Of course _I_ won't install suspicious ones, but how do you make sure Auntie Liz won't?

I think you are switching topics from allowing other vendors to use Apple-only APIs to "sideloading".

Educate her. (yes, that's not Apple's responsibility, and they don't even try. We need people to understand what applications can do when installed on a smartphone or a computer. It's a national education issue IMO). If she can't take care of herself anymore - parental controls.

I see the point in having some entity verify legitimacy of applications, but it does not need to be only Apple/Google, like with TLS.

And it really shouldn't be this way. Everyone is tricked into believing that they own devices they bought. And we are somehow supposed to accept that the abilities of the device can be reduced after we bought it just because the vendor said so. Same with (lack of) right to repair. It's really not ok, nobody (especially here) should accept that.

Yes. Also, it is a crazy hard battle to fight.

The first step needs to be people moving out of the denial phase and realizing that we're already there. Our current laws are written that way.

That's the prerequisite to have any significant initiative to move the needle in the right direction. Most people won't care about fighting hard to secure rights they assume they still have in full.

Can someone who actually understands the topic explain to me (or link good resources) why/if what they do is useful to anyone? Or are they literally just in the business of making money? (anyone except themselves of course. I'm serious, any hints of irony are unintended)

It's a common rhetoric from someone who has no clue about financial markets (the person you replied to).

Suppose you want to invest in S&p500 so you want to buy the ETF. Someone like Jane Street can create sell you this ETF, and take care of the risk that comes along with it. For example, the price they sell you this ETF should take into account the pricing of underlying stocks. While it sounds trivial, doing this profitably (and therefore sustainably) is a tough job. And doing it competitively to offer you a good price on it is an even tougher job.

Is that why they got banned in India recently? Because they were too good at offering complex financial instruments to customers at competitive prices?

Ultimately companies like Jane Street have no moral rudder and it is a waste of talent for smart young people to work for them, but we are so far beyond such considerations at this point that it sounds naive to even suggest that maybe talented people should work on things that make society better for everyone and care about the moral implications of their work. Instead everyone is looking for a way to contribute to the coming dystopia in whatever way they can because that's where the money is.

They got banned because they were accused of pretty bad market manipulation (which Jane Street denies of course)

Most likely they got slapped in india because a domestic market maker bribed the right regulators and JS did not

At the end of the day they are a prop firm. They are a business trying to make money and part of that is market making but it’s not solely market making.

You may not like it but we function in a capitalist society and as such the efficiency of markets is part of that. To have that happen usually requires the market as a whole participating and that includes firms like Jane Street. In the India case I don’t know if what they were doing was illegal or not, India is complicated and the laws there in my opinion are influenced not as much by standards but how well you scratch the itch of others. It is clear the option markets in India was/is highly inefficient in that Jane Street was able to pull the rug over and over. I would be curious who the counter parties were and if this is more about pride of Indian financial institutions not being competent instead of this being illegal. Thinking more about Hindenburg and how India reacted. In the US it feels like a gray area because at the end of the day the options market was clearly clueless on how they should be pricing the options.

Speaking from a US perspective people get thorny on these topics but I think it’s great that folks are always pushing the boundaries. This type of law is tested and we figure out what is ok and what is not. It’s often not cut and dry. Maybe Jane Street was entirely in the wrong in India and they will pay a price. Maybe not. Hopefully their markets learn and benefit from it.

I don’t believe any of us are in a position to say how folks should be spending their time. If we went down that road we could probably argue it back to nobody should be working and should simply be farming for our own food.

The majority of counterparties were regular citizens, who did not understand that what Jane Street was doing was even possible.

Money is debt, you can’t make it without someone else owing it. Taking billions in profits from India’s stock market is pretty straightforward, millions of Indians lost their savings.

You’re not entirely wrong. India does have a problem with gambling and especially in Bank Nifty. I think something like 50% of options volume is retail, which is wildly high. Just because there is a gambling problem does not make it “pretty straightforward”. The courts will hopefully figure it out to their local pleasing.

Edit: I don’t think my point was clear. If you are going to allow retail in the options market, you should also be ok with sophisticated actors participating in it.

> I don’t believe any of us are in a position to say how folks should be spending their time.

We obviously can't tell people how to spend their time, but we can point out that there might be moral reasons to avoid working in industries and for companies with particularly strong negative impacts on society.

> If we went down that road we could probably argue it back to nobody should be working and should simply be farming for our own food.

This is a classic false dichotomy. There are an infinite number of middle grounds between farming for our own food and an ultracapitalist dystopia in which morality is replaced by profit.

Sure, but that’s kind of my point, once you open the door to moral gatekeeping of jobs, it gets very slippery very fast. You can always trace the “negative impact” argument up or down the stack. That accounting software? It helps a business capture margin. That business? Probably acting as a middleman extracting value from someone else. Even compiler contributions ultimately fuel businesses optimizing for profit.

You’re right that there are middle grounds between subsistence farming and some caricature of ultracapitalism, but deciding where to draw that line in practice is messy. Pretending it’s obvious which industries are “moral” and which aren’t usually says more about someone’s priors than it does about some universal ethical framework.

At the end of the day, efficient allocation of capital, imperfect as it is, is what makes the system work. It drives productivity gains, lowers costs, and ultimately raises living standards across the board.

> efficient allocation of capital

One big problem is that such claims are often cover for what amounts to theft. PE companies loading acquisitions with debt, for example, or "enshittification" - both tactics which are optimized to transfer wealth to investors, not improve the overall allocation of capital.

The idea that all these shenanigans are "efficient allocation of capital" is just propaganda, left over from decades ago before the system became what it is today.

This is where you need government intervention and controls, but unfortunately the US government is structurally and systemically unable to provide that. Regulatory capture, legalized corruption ("campaign finance", "lobbying"), money as speech, corporations as people - none of this is morally sound, and the justification that it's all in service of "productivity gains, lower costs" etc. is hollow.

> but deciding where to draw that line in practice is messy.

Of course - that's the nature of morality, it's inherently political. There would be no morality without other people. But that doesn't mean we should throw up our hands and give up on it.

It would be nice if smart people would not require law to operate in an ethical way. For complicated problems, and for people who are just plain stupid, it's nice to have law and law enforcement, so that capitalist society can work properly.

But the idea that smart people should "push the boundaries" to find out "what is ok and what is not" is either naive or borderline sociopathic IMNSHO.

I’m not being naive or sociopathic here, I’m pointing out how securities law actually functions, at least in the U.S. It’s rarely as cut-and-dry as you suggest. The courts exist precisely to resolve ambiguity, and there’s always some ebb and flow depending on the administration and the legal environment.

Before throwing around labels like “naive” or “sociopath,” it’s worth recognizing that a capitalist system relies on efficient markets, and efficient markets depend on laws being tested and clarified through the courts. That process benefits everyone.

I’m not making an ethical defense of any specific behavior. I’m saying that just because someone benefits from mispricing in a market doesn’t automatically make it unethical. The courts help define those boundaries. If you reject that premise and prefer a system without capitalism, then we’re simply talking past each other.

And for what it’s worth, tossing out loaded terms like “naive” or “sociopath” isn’t exactly an argument, it’s just lazy rhetoric. It’s ok for us to disagree but why use such a lazy argument?

I'm not opposed to capitalism, and enjoy its benefits everyday. I don 't however agree that efficient markets are required for capitalism. I also don't think that HFT is the only way to create efficient markets.

I do however believe that gaming the system for personal profit is unethical. The intention of the law might have been to build a playground for people to enrich themselves, but from a Christian standpoint, I don 't think this always works out well for society. I'm not a Christian, but I do like some of its values.

I was a bit disappointed about the suggestion that capitalism requires certain things that make Jane Street a necessity. This is not a fact, nor does the current process benefit everyone equally. Rejecting that notion, and possibly reading a bit too much into that, is what caused me to use said terms.

I do agree that we are probably talking past each other though :)

> It's a common rhetoric from someone who has no clue about financial markets (the person you replied to).

I think what OP meant is that producing all this fancy advanced tech just to play the financial game isn't all that much benefit for society.

And when looking at societal development in the last couple of decades with the increasing gap in distribution of wealth, social mobility and overall life expectancy declining and other such metrics, I think it's a valid standpoint that maybe, the collective smarts of our society could be allocated a bit better than putting them into companies like Jane Street; as impressive as their work is.

That is true but capitalism sadly encourages the more profit the better. With making less and less in traditional research jobs for example and rising costs, this positions come more attractive by the second. It is sad to see.

That's a terrible example - how much room for improvement is left for the VOO-tier sensible, simple investment vehicles that matter to normal people with their monthly 401k buys? 1/10th of a BP? 1/100th? Is Jane Street hiring to chase diminishing returns to such broadly relevant, already-efficient markets, or to cook up new market-manipulation schemes of the sort that got them kicked out of India, that are antithetical to the market integrity such firms are supposed to provide?

The notion that efficient markets require firms like Jane Street to endlessly chase extra "edges" is a false dichotomy. The world would be a better place if intelligent people made more of the concrete products and services that get priced, than if they chased butterflies to expose that price one minute earlier to concentrate ever-more ephemeral, irrelevant arbitrage opportunities into their own little house like a Maxwell's Demon of the stock market.

> Or are they literally just in the business of making money?

All for-profit businesses can be viewed abstractly as “in the business of making money”, so this doesn’t really distinguish Jane Street in any way.

> … why/if what they do is useful to anyone?

The utility that Jane Street provides is to the be a persistent buyer and seller of equities. Basically you can call them at any time and buy shares or sell shares. Most shareholders do not trade very often so without a “market maker” like Jane Street it can be a lot of work finding a buyer/seller who is willing to trade on your schedule at the current market price. You’ll have to pay them extra to convince them to trade, which makes it harder to trade profitably. Jane Street significantly lowers the price and makes trading easier (“provides liquidity to the market”).

I do like this take and one of the reasons I don’t like how many folks pile in on the same theme “these folks are wasting their lives”. We could make the same reductionist conclusion for probably most of the people here on HN.

Both ad tech and quant work are essentially involuted in that you're spending ever greater amounts of effort and manpower to squeeze out marginal gains because of how much profit doing so provides. Society would not significantly notice or suffer if we spent half as much time on things like this. There are much bigger things we need to do.

the premise here is that market makers and arbitrageurs are crucial for efficiently allocating capital. enabling sellers to sell to the highest bidder and buyers to buy from the cheapest vendor means less capital wasted(?)

in my experience Jane Street make no attempt to defend the financial system; such societal benefits are obvious or implicit.

whether you (or they!) really buy that is irrelevant

I used to work there, so with the appropriate deference to that Upton Sinclair quote about paychecks:

Market makers like JS vastly increase market liquidity across all sectors, which is required for modern high-efficiency economies to work. McDonalds prices are possible because there's enough liquidity in corn futures.

More abstractly, high market liquidity corresponds to higher-confidence information about the future, which hedge funds generate (and distribute for a low fee via markets), allowing for more impressive planning ahead.

Also, you know how when you buy stocks it doesn't cost you anything and you often get better-than-public-book execution prices? That didn't happen prior to modern electronic market makers. Multiply that efficiency gain by umpteen trades every day.

In general, "being in the business of making money" inherently requires you to do something useful to get paid, to the extent you're not just abusing a principle agent problem or something. The most credible argument for hedge funds making money without doing something useful is that they're doing cantillon effect harvesting or something. I think that's pretty small overall.

AFAIU the service HFT forms provide to the market is liquidity. Basically allowing you to sell stocks/options as soon as you feel like it.

In turn that leads to more efficient markets since prices converge to their "correct" value faster.

HFT is a different thing from what is being discussed in this thread. With HFT you're talking custom ASICs running within light-nanoseconds range of the target exchange. Ocaml very much isn't in this picture. This is about human-speed trading. Which also provides liquidity and correction of instrument prices towards their fair value, just at a different level.

The societal value of either is debatable all the same, mind you. It's more that wherever you have markets, you have money-making opportunities that can be leveraged, and therefore are.

There’s a few orders of magnitude between “human-speed trading” and the absolute bleeding edge of HFT. A company like Jane Street still does automated trading far faster than any human could.

Sure, Jane Street probably isn’t the fastest in the business, but I wouldn’t be surprised if they’ve got FPGAs or ASICs, dedicated high speed pipes to shave off milliseconds of latency, things like that.

HFTs competing with each other at market making lower spreads; the cost retailers/institutions need to pay to enter a position. Prior to algorithmic trading, you might need to pay a whole percentage point or more (100 basis points), now spreads on the most popular products are so tightly quoted that it can cost less than 1 basis point (0.01%) to enter a position.

Here's how I think about it:

- Money (the concept) is useful to society as a store of value, so you don't have to waste effort bartering for things.

- Adding on to that, credit is useful to society since it lets humanity even more efficiently allocate its good and labor (stored as money).

- Finally, stocks, insurance, and other financial instruments are additional advanced developments on top of credit, where groups of humans (companies) can take on even more risky endeavors supported by investors or insurers.

So my view is companies like Jane Street facilitate these complicated value transfers, to let (e.g.) a spaceship company draw on resources generated by growing crops, selling shoes, giving haircuts, etc via a convoluted path through stocks, ETFs, whatever.

Market makers or other similar HFT are providing liquidity in an efficient manner to the markets. The benefit is often debated but for the majority of retail and institutional investors, spreads have never been lower. Instead of a guy at the floor swallowing large margins up, you have bots electronically vacuuming pennies.

Of course the whole point for a firm like Jane Street is to make money. To make money means they are competing with someone and that someone could be a loser depending on the scenario.

My own opinion, most folks don’t like market makers or folks who work in financial markets are simply not well informed. The efficient allocation of capital is a valuable service to humans in a capitalist society. People often forget how wide spreads were in the past and that humans were swallowing that margin up with little competition. Now market making is highly competitive and because of it investors both small and large benefit from it.

The societal value of liquidity and a narrower bid/ask spread, while non-zero, is not even remotely commensurate with the bucketloads of cash that the top firms bring in.

It's mercenary work, plain and simple. Advanced, interesting, full of juicy maths, highly competitive, rewarding, but mercenary. No one's doing this job for the good of the world, come on.

Give some of your earnings to trans defense NGOs, now that makes a difference and I'll be personally grateful.

I don’t disagree that people don’t get into HFT because they’re trying to save the world. It is mercenary in the sense that the rewards attract talent. But calling the work itself valueless misses the point, liquidity and price discovery are public goods. You notice them most when they don’t exist, and the cost of capital spikes for everyone.

As for the “bucketloads of cash,” that’s just how competitive advantage in markets gets priced. If firms didn’t deliver something real, the money would dry up quickly. Markets are brutally efficient at punishing dead weight.

Philanthropy is great, give to causes you care about. But it’s worth recognizing that the system enabling those donations in the first place is the same one that relies on liquidity, efficient spreads, and functioning markets.

> And they believe it.

Two reasons: they are not educated about devices they use, desktop operating systems are still awful at security (exe from a mail attachment can have a pdf looking thumbnail, executed with two clicks, even if accidental, immediately gets access to all user files... the whole concept of antivirus software...). It has nothing to do with side loading, especially on Android, where sideloading is a very explicit action already, and then you need to allow the application to do harm.

> Giving them the power to run any software they want, also means giving everyone else the power to make them run any software they can be tricked into installing.

You are taking away people's agency. Either you get to control your bank account risking that you get scammed, or someone will control it for you.

> very explicit action already, and then you need to allow the application to do harm.

So the email they get which tells them about the 3 viruses also contains a phone number where a "nice tech support person" will walk them through the steps of side-loading the "anti-virus app". You'd be surprised at what warnings/permission boxes people will blindly accept when they think they're talking to someone from Microsoft or Google's tech support.

> You are taking away people's agency.

Agency they don't want and never use. It's taking away agency from people like us but for the average user, Google is taking away nothing they've ever cared about.

> Either you get to control your bank account risking that you get scammed, or someone will control it for you.

I was just saying a couple of days ago that we need a service for old people where any transaction above a certain configurable threshold (for example, $500 in a day) has to be approved by an employee of this service who serves as a neutral 3rd party whose sole function is to try to prevent scams. That way the old folks would still have their agency so they can go out and buy all the hot-rods and transistor radios they want but if they're about to wire money to "Microsoft" then the anti-scam-company would step in and prevent that transaction (or at least require the old person have a discussion about why its an obvious scam first before eventually allowing the transaction through depending on the client).

Whether this change actually takes control away from us remains to be seen. For example, I don't see anything in the article that suggests we wouldn't be able to install a custom ROM with the signature check removed. Personally, I already run GrapheneOS so I expect I actually won't be impacted by this at all.

> You'd be surprised at what warnings/permission boxes people will blindly accept when they think they're talking to someone from Microsoft or Google's tech support.

But I know they do, I've seen this first hand. It's lack of education (except for extreme cases of people who cannot take care of themselves. but that's not the majority)

> Agency they don't want and never use. It's taking away agency from people like us but for the average user, Google is taking away nothing they've ever cared about.

It's agency they don't know they want, until it suddenly becomes useful. I'm not expecting everyone to use side-loaded, unapproved apps every day, it's about keeping OS vendors in check, about limiting their power over devices they don't own. If they act against users, there should be a way to circumvent them. Such ideas take that away.

> I was just saying a couple of days ago that we need a service for old people where any transaction above a certain configurable threshold (for example, $500 in a day) has to be approved by an employee of this service who serves as a neutral 3rd party whose sole function is to try to prevent scams.

Enabling such a service is a choice they would have to make. The default is control. The situation with all side loading restrictions is opposite - you don't get to choose.

Unless you are suggesting that such service should be forced on people that match some vague "old" criteria. Our disagreement goes far besides technology in that case.

> It's lack of education

Saying "the users need to be educated" doesn't solve anything. Google could start an education campaign tomorrow and it would be ignored by most of the people that need it. If they were interested in learning then we wouldn't have this problem.

> If they act against users, there should be a way to circumvent them

Then install a custom rom. All the power you want is already available, just no longer on the official android builds. Seems silly to demand Google screw over the majority of their customers because you don't want to install a custom rom.

> The situation with all side loading restrictions is opposite - you don't get to choose.

On the contrary, you choose when you purchase your phone. If you don't like it, purchase a phone that caters to users like us. There's the librem5 which I sadly own but that phone is a joke (but tolerable if the android landscape starts looking too much like Apple). I've heard good things about the pinephone but personally I'm never touching anything that comes out of pine64 again after the disastrous pinebook pro. I love the idea behind the FairPhone but the security on that device is a joke. I'm hoping the GrapheneOS people launch a decent phone.

> Saying "the users need to be educated" doesn't solve anything. Google could start an education campaign tomorrow (...)

Of course just saying it doesn't fix anything.

I don't want Google or Apple or any other vendor to do any education campaigns (and they clearly don't even want to try), part of my point is that the issue is too deep to be solved by such technological measures. For example, not skipping such warnings (includes invalid/expired certificates in https) and basic cyber hygiene should be taught in schools. There should be more public campaigns about these issues.

So I'm not even sure if Google should be fixing that particular problem (although I can guess why they are really eager to "solve" it this particular way). I would rather they focused even more on a stronger sandbox, making sure system software on licensed phones has no vulnerabilities and making sure the users understand what power they give to an application, than pretend that this fixes much. Sideloading restrictions only barely (because it's not like they are actually going to verify the applications, nothing about that in the post) plug one way to scam people remotely, over many, many other more severe ways. The banks in many countries don't even properly verify identity of people they give loans to, why not focus on that instead? (Yes, Google won't fix this, I'm not asking them to, they shouldn't try.)

We lose more than we gain.

> Then install a custom rom. All the power you want is already available

On most phones it's not, but that's besides my point.

> Seems silly to demand Google screw over the majority of their customers because you don't want to install a custom rom.

I'm not demanding Google to screw over anyone, and the current "sideloading" situation does not screw over anyone. I just believe that the vendors should not have the sole power to decide what applications can be installed on devices they don't own. Maybe let's have multiple certification authorities besides Google, like with TLS, as a start/compromise? I see the point of actually having an expert verify if an application is legitimate, and this isn't even it.

> On the contrary, you choose when you purchase your phone.

That choice should not be made when the phone is purchased.

And also I'm not talking about what I want to do with my phone, I'm talking about what I believe people should be able to do with their phones - for example they should be able to opt out of such protections if they don't want them (and leave them on if they want them), or choose who verifies their applications. Only possible if they know what the protections do and what the risks are, going back to what I wrote about education.

But this is not about device integrity.

I'm all for code signing and integrity verification. We need both technologies on pretty much all devices.

You are just conflating two different issues - side loading has nothing to do with device integrity.

You are forced to trust Google or Apple if you want a smartphone. They own the whole market, it's a duopoly. You already have no power to install an OS without such limitations on most smartphones.

Limitations because it's not just protection - you don't get to choose which authorities you trust. Defaulting to manufacturer/OS vendor as the default authority would be ok, but there is no option to choose. Users have no power over their own device. That's not ok even if most choose to never execute it or don't know about it, it will lead to abuse of power.

Looking at the number of already discovered vulnerabilities in popular applications, I would say it's actually impossible to build secure systems right now. Even companies that are trying are failing. IMO it's still way too easy to introduce a vulnerability and then miss it in both review and pentests. We need big changes in all parts of the software buliding and maintaining process. Probably no one will like that, because we are still in "move fast and break things" software development age.

I love AppImages, but Flatpak tried to go way beyond - centralized updates, sandboxing/permissions system, package once, run on many distributions...

Getting software from repositories is not just laziness, you automatically get updates and the software from repos is supposed to work with your distro, that apparently is not always true with AppImages.