←back to thread

Everyone knows all the apps on your phone

(peabee.substack.com)
1192 points gniting | 3 comments | 29 Mar 25 21:26 UTC | HN request time: 0.612s | source
Show context
andsoitis ◴[30 Mar 25 00:11 UTC] No.43519910[source]
> everyone knows all the alls on your phone

On Android phones. iPhone doesn’t have this privacy deficiency.

replies(10): >>43519937 #>>43519943 #>>43520950 #>>43521020 #>>43521389 #>>43521565 #>>43522434 #>>43522575 #>>43523112 #>>43526348 #
wkat4242 ◴[30 Mar 25 03:14 UTC] No.43520950[source]
On iOS it's kinda worse in some ways. If you enroll into a company MDM they can see all your apps.

On Android if they use the work profile (which is the standard method these days) they can only see the apps inside there.

replies(4): >>43521149 #>>43521150 #>>43521257 #>>43521463 #
mgriepentrog ◴[30 Mar 25 04:56 UTC] No.43521463[source]
Apple introduced account-driven enrollments in 2021[1], which behaves similar to Android's work profile. Managed apps/data are kept in its own APFS volume, and MDM servers don't have access to anything outside of it. They also disallow system-wide commands like wipe device. The only caveat is you need managed Apple IDs[2] to use this enrollment flow, and I doubt many companies have set it up.

Regardless, MDM installed app visibility is limited to those users who opt-in to an organization managing their personal device, and isn't an effective way to broadly gather what apps a given person has installed. What's described in this post would work on any user/device, and there's no way to deny/opt-out of specific permissions.

[1] https://developer.apple.com/videos/play/wwdc2021/10136/ [2] https://support.apple.com/guide/apple-business-manager/use-m...

replies(2): >>43522615 #>>43522734 #
whs ◴[30 Mar 25 09:02 UTC] No.43522615[source]
I'm working on implementing this for the company, and the annoying limitations on iOS is that you can't clone apps. If you want Gmail (as an example) as managed app, you can't have another Gmail as unmanaged app. While the company can't see inside the Gmail managed app (without the app itself explicitly providing that feature), the company can remove Gmail (and any local data inside the app) at any time.

Fun fact from the MDM implementation - the most private way (at least to the company policies) to have a company-connected device is to buy a separate phone and install company's MDM on it. On company provided devices, the company may locate company's assets at any time but doing so on a personal device is a privacy breach.

replies(1): >>43522750 #
1. wkat4242 ◴[30 Mar 25 09:30 UTC] No.43522750[source]
Yes, Apple hates the idea of work-badged apps that Android has. I have to admit, a lot of our users don't grok it either at first. However once they realise the benefits (the company has much less visibility, AND they can turn off the work section completely with the touch of a button) they usually come around pretty quickly.

The bad part of this is that apps have to specifically support the multiple profiles option, otherwise they can't be used for this.

And yes, I agree, that is the best way. We have the same restrictions for personal devices. Though I as an admin know we never use the locate functionality (and I know every person who has access to it).

replies(1): >>43526372 #
2. illiac786 ◴[30 Mar 25 18:31 UTC] No.43526372[source]
Donyou know if account driven enrolment requires different phone numbers for the MDM managed apps and the personal ones? Specifically for the diaper app for example.
replies(1): >>43541124 #
3. wkat4242 ◴[31 Mar 25 23:26 UTC] No.43541124[source]
I don't believe they do, no. The numbers aren't all that important in terms of MDM. We don't even see the number if someone inserts a second private SIM in their company phone. We consider that personal information we shouldn't even know.