I agree that Apple should not be the (sole) one signing apps for their OSes.
However, I doubt a dialog "this app was signed by 'Evil Privacy Invaders, inc'. You haven't trusted their software before. Do you want to do that now?" would deter the typical user from clicking 'Yes, always'.
So, the best they could do is allow a fixed set of regulated code signers. I do not see how that would be much of a change from the current situation.
However, I doubt a dialog "this app was signed by 'Evil Privacy Invaders, inc'. You haven't trusted their software before. Do you want to do that now?" would deter the typical user from clicking 'Yes, always'.
So, the best they could do is allow a fixed set of regulated code signers. I do not see how that would be much of a change from the current situation.