So today I was installing iLife ’11 and I noticed that Apple has started signing their installer. It is nice to know that the company is actually taking a proactive approach to security and making it a bit easier to know where a file came from regardless of what channel you used to obtain it. it is not a required part and even if the certificate is invalid you can choose to trust it but you will get a warning message. This is much better than what any other OS provides currently. Windows is the closest one allowing you to specify a company that created the executable in the properties of a file. Only that stuff is not signed and I can easily create a file that looks like it came for anyone I choose to. It’s a bit more difficult to do so with OS X and yes I do realize that it is just the installer that is signed and not the executable itself.
Anyway another step in the right direction for Apple!