Squatters Abusing iPhone App Store

← Back to Stories (view on slashdot.org)

Squatters Abusing iPhone App Store

Posted by kdawson on Friday October 9, 2009 @02:58AM from the not-even-for-the-money dept.

An anonymous reader sends in a new report on a not-so-new problem, one that has had little visibility so far. A quirk in the way Apple's iPhone App Store works has enabled squatters to move in, and in fact has encouraged legimate developers to grab and squat on dozens of app names that they might use some time in the future. "It turns out you can exploit the registration process to gain ownership of as many app names as you like, without any intention of actually writing a single line of code. 'A developer can pretend to submit an app, but abandon their submission at the last moment, avoiding the need to actually create an application, but keeping hold of the app's name. In limbo. Maybe forever.' says iPhone app developer Atomic Antelope, who found that their app name 'Twitch' and its variations were stuck in limbo . 'Squatters have moved into the app store. They're worse than domain name squatters though, because you can't even enter into negotiation with them. You don't know who they are, or where they are.'" The solution seems simple: for Apple to flush all the apps that have not submitted binaries, and to repeat periodically.

31 of 121 comments (clear)

Pretty Shortsighted Solution by eldavojohn · 2009-10-09 02:59 · Score: 4, Insightful

The solution seems simple: for Apple to flush all the apps that have not submitted binaries, and to repeat periodically.
Simple solution needs a simple response: compile Hello World! tutorial app and name it XYZ app and upload it to your desired squatter name. Use same binary or recompile for tiny differences to avoid sum checking. You have a complex problem that no simple solution will fix. Anything short of charging a nominal fee (a la domain registration) will probably not work and the fee idea is a horrible one for people who just want to get their app out there. If it doesn't cost money, the rest of the dominoes will fall like a house of cards. Checkmate. Ball's in your court.

--
My work here is dung.
1. Re:Pretty Shortsighted Solution by Idiomatick · 2009-10-09 03:06 · Score: 5, Insightful
  
  Wouldn't a shitty ap like that get rejected since it doesn't do fuck all? Plus they'll prolly get charged or lose their account if they are forcing apple to check aps that are obviously BS.
2. Re:Pretty Shortsighted Solution by PrimaryConsult · 2009-10-09 03:07 · Score: 3, Interesting
  
  Actually a small ($5ish) online fee sounds quite reasonable. It's also a form of quality control, people will ask themselves if their app is truly worth "getting out there" at this point and time before typing in their credit card number...
  Or, you could offer people the option of investing time in it... like you must play a pointless flash game of breakout or minesweeper to avoid losing the app. Next to the "target score" indicator could be a "just pay the fee already" button...
3. Re:Pretty Shortsighted Solution by rockNme2349 · 2009-10-09 03:32 · Score: 5, Funny
  
  Wouldn't a shitty ap like that get rejected since it doesn't do fuck all? Plus they'll prolly get charged or lose their account if they are forcing apple to check aps that are obviously BS.
  Solution: Write a program to display hello world in the font of the users choosing, and not only will it get accepted, you will probably get people to pay $0.99 for it.
  
  --
  Sewage Treatment Facilities - "Our duty is clear."
4. Re:Pretty Shortsighted Solution by JorDan+Clock · 2009-10-09 03:43 · Score: 3, Insightful
  
  If the account has lots of titles and no applications or lots of tiny do nothing, similar sized programs, purge and ban.
  Whoa there. A solution like that would remove over 90% of the App Store.
5. Re:Pretty Shortsighted Solution by insertwackynamehere · 2009-10-09 03:47 · Score: 2, Informative
  
  There's a $100 yearly fee to develop for iPhone.
6. Re:Pretty Shortsighted Solution by insertwackynamehere · 2009-10-09 03:48 · Score: 2, Insightful
  
  There is a VERY strict vetting process that causes many legitimate developers to go back to the drawing board time and time again. That would not work.
7. Re:Pretty Shortsighted Solution by m.ducharme · 2009-10-09 03:50 · Score: 4, Insightful
  
  If the account has lots of titles and no applications or lots of tiny do nothing, similar sized programs, purge and ban.
  Whoa there. A solution like that would remove over 90% of the App Store.
  I don't see why that's a problem.
  
  --
  Rule of Slashdot #0: You and people like you are not representative of the larger population. - A.C.
8. Re:Pretty Shortsighted Solution by Elshar · 2009-10-09 03:55 · Score: 2, Insightful
  
  I take it you have never used the app store. I could see it working beautifully.
9. Re:Pretty Shortsighted Solution by MBGMorden · 2009-10-09 03:56 · Score: 4, Insightful
  
  As opposed to "flashlight" programs that merely turn the screen white?
  An app doesn't have to do much to get accepted at the app store. It's more about things that apps CAN'T do that will get them rejected.
  
  --
  "People who think they know everything are very annoying to those of us who do."-Mark Twain
10. Re:Pretty Shortsighted Solution by Phisbut · 2009-10-09 03:58 · Score: 3, Insightful
  
  If the account has lots of titles and no applications or lots of tiny do nothing, similar sized programs, purge and ban.
  Whoa there. A solution like that would remove over 90% of the App Store.
  I don't see why that's a problem.
  It would be a huge problem for Apple, as they would no longer be able to claim that there are several tens of thousands of apps available on the app store. It's pretty much like the PS2 vs. other consoles marketing bullcrap. Sure, you've got sooooo many apps (or games) available on your platform, but 95% of them is pure crap.
  
  --
  After 3 days without programming, life becomes meaningless
  - The Tao of Programming
11. Re:Pretty Shortsighted Solution by Brandee07 · 2009-10-09 05:18 · Score: 2, Interesting
  
  Simple solution needs a simple response: compile Hello World! tutorial app and name it XYZ app and upload it to your desired squatter name. Use same binary or recompile for tiny differences to avoid sum checking. You have a complex problem that no simple solution will fix. Anything short of charging a nominal fee (a la domain registration) will probably not work and the fee idea is a horrible one for people who just want to get their app out there. If it doesn't cost money, the rest of the dominoes will fall like a house of cards. Checkmate. Ball's in your court.
  This wouldn't actually work for the purposes of the squatters. They need to hold on to a name for the development of a future app. They can't be squatting for the sake of profit because there's no way to tell who wants the name you're squatting on, and therefore no way to extort money out of them for it.
  So, with the assumption that they're squatting on a name for the purpose of maybe using it for something in the future, if they upload a Hello World! app, would Apple let them upload a totally different app later as an update? What about the people who bought the $.99 Hello World! app and were happily enjoying using it to greet everyone they meet, and suddenly they get an app update that makes it into a fart app?!
flushing apps by halfEvilTech · 2009-10-09 03:05 · Score: 5, Interesting

I don't see why it would be to hard to do one of the following:
1) require the binaries to be present when uploading the app, if you back out it doesn't save anything.
2) give a 7 day grace period to upload the app binaries. If they are not uploaded by then, you forfeit the rights to the name
Simpler solution by MosesJones · 2009-10-09 03:05 · Score: 5, Insightful

Your name isn't accepted until your product is accepted to the App Store. This way Apple have to approve both the name and the application so if you create an application that just prints out "hello world" but call it "GPS navigation" then it gets bounced because the name is wrong.
Sure this means people will bleat and complain about Apple rejecting names sometimes but it would remove the problem of squatting.

--
An Eye for an Eye will make the whole world blind - Gandhi
1. Re:Simpler solution by AndrewNeo · 2009-10-09 03:35 · Score: 2, Funny
  
  "Sorry, the name ID is already taken!"
2. Re:Simpler solution by shentino · 2009-10-09 03:45 · Score: 4, Insightful
  
  The problem is that people will be assholes no matter what system you use.
  Unfortunately that's true of any problem.
Not short sighted really... by Numbah+One · 2009-10-09 03:11 · Score: 4, Interesting

Not really. Since an app has to go through Apple's approval process, Hello World apps that don't actually do what the submitter indicates should not make it into the store. Of course, given the opaque approval process and the number of fart apps that made it in to the store, the approval process is not a guaranteed firewall.

Apple could them flush the "empty" apps that do not have approved binaries, or at least binaries in the approval process, if they have been empty for more than 3 months or so.

This is just another thing that Apple, and the Android and Palm folks, will have to deal with. The real fun will be when apps are available on multiple platforms, but have different names because of conflicting approvals processes, squatters, and other things that have not yet surfaced.
not really worse by v1 · 2009-10-09 03:14 · Score: 5, Insightful

They're worse than domain name squatters though, because you can't even enter into negotiation with them.
The way I look at any "hostage situation" is that negotiation is what gives them their power. If you refuse to negotiate with them, and they know that negotiation isn't an option, it severely limits what they can do or what benefits they can reap from their actions. Look at china, they have a simple rule, they do not negotiate with criminals under any circumstances. You don't see anywhere near the hostage-ish problems over there because any criminal knows they have little to gain.
Its the same way with domain squatting. The reason they do it is so they can extort or gouge you for a fortune to get the name because they can negotiate with you. If it wasn't possible for them to contact you or you to contact them to negotiate, domain squatting wouldn't be 1/100th the problem it is now. The LAST thing in the world the ITMS needs is some way for a squatter to be contacted by someone that wants the name.
The solution here is as the article mentions, the same thing that was done to domain tasting recently, for Apple to make it impractical by limiting how long someone can squat without using the name.

--
I work for the Department of Redundancy Department.
1. Re:not really worse by jours · 2009-10-09 03:42 · Score: 4, Interesting
  
  Listen, let's not confuse domain squatting - the act of sitting on a company's domain name waiting for them to want to build a web site - with the legitimate secondary market for domain names.
  The former was a big problem "in the old days" as companies were trying to get to the web and found someone squatting on their name. This has been largely solved in the courts now, and few companies are making their first move to the web anymore anyway.
  The secondary market for domains though is completely legit. I buy domain names that I expect to have value, whether I intend to use them or not, and then sell them to others when they want to use them. It's no different than you buying a piece of land and then someday selling it to someone who wants to build a shopping mall on it. You weren't squatting on the land, you just didn't know what (if) you were going to do with it. You paid for it, paid the taxes over the years and then sold it.
  That's just the free market...don't like it, don't shop there.
  
  --
  This sig intentionally left blank.
2. Re:not really worse by sohare · 2009-10-09 05:51 · Score: 3, Insightful
  
  Listen, let's not confuse domain squatting - the act of sitting on a company's domain name waiting for them to want to build a web site - with the legitimate secondary market for domain names.
  The former was a big problem "in the old days" as companies were trying to get to the web and found someone squatting on their name. This has been largely solved in the courts now, and few companies are making their first move to the web anymore anyway.
  The secondary market for domains though is completely legit. I buy domain names that I expect to have value, whether I intend to use them or not, and then sell them to others when they want to use them. It's no different than you buying a piece of land and then someday selling it to someone who wants to build a shopping mall on it. You weren't squatting on the land, you just didn't know what (if) you were going to do with it. You paid for it, paid the taxes over the years and then sold it.
  That's just the free market...don't like it, don't shop there.
  Not exactly sure how you were modded insightful. There is a common link between domain squatting and the secondary market. Both are purveyed by douchebags. You give any fool a day and a dictionary and they can create a program which will spit out all kinds of permutations for names of bands, albums, businesses, movies, etc. You are in a heavy metal band and like trolls and swords? Why, let's name it Trollsword and start our website. Oh, but thanks to our friendly insightful secondary market guy, the name has been registered.
  The comparison of domain hoarding (which is what you refer to as the secondary market) to buying land is completely inappropriate. There is a huge difference between buying some swampland and putting the hours into coming up with a cogent plan to make it the next big yuppie vacation spot, hawking this idea to developers compared with just combining a few words from a database. If a plot of land looks like a rubbish heap it doesn't sell for much unless there is some plan to change it. You could maybe argue that domain hoarding is akin to some of the original American land barons. But they were douchebags too. Just like people who hoard water and sell it after some natural catastrophe. Douchebags. I mean a bloddy punk child can come up with these ideas to profit.
3. Re:not really worse by secretcurse · 2009-10-09 06:20 · Score: 2, Interesting
  
  No, domain squatting adds absolutly no value to the system and you are a fucking douchebag if you think it does. Sure, it's legal. But that doesn't mean you're not an asshole if you're a domain squatter. Stop splitting hairs. You're a domain squatter if you buy a domain that you don't intend to bring to market with a relevant web page. Call it "domain speculation" or whatever the hell else you'd like to call it, but it makes you an asshole who makes the internet a slightly more annoying place.
  
  --
  I'm using all of my mod points to mod ancient memes down. Please join me.
Another solution... by Dan+East · 2009-10-09 03:14 · Score: 3, Insightful

Why would a single developer (aka $100 fee) submit dozens or hundreds of apps at one time? With a 2 week turnaround it would make sense to only allow a handful (5?) apps to be submitted and waiting for approval by a single developer at once.

--
Better known as 318230.
1. Re:Another solution... by King_TJ · 2009-10-09 03:27 · Score: 2, Interesting
  
  Yep.... I agree completely. This is also where that $100 "entry fee" comes into play as a positive thing... A lot of people were railing against it, initially, as I recall. But by putting up a financial barrier to entry like that, it gives Apple a decent way to make a ban on a specific developer have some "teeth" to it. (If you want to keep spamming the app store with dozens or hundreds of bogus apps, simply to be a squatter, or to bog down the submission process and make Apple look bad, or ?? -- at least it's gonna cost you $100 a pop, each time they discover you and ban you.)
Re:EASY solution by Skraut · 2009-10-09 03:17 · Score: 2, Insightful

Right, like Apple needs a financial incentive to reject applications...

--
Introducing Microsoft Vacuum 1.0 The first Microsoft product that doesn't suck.
You don't know who they are, or where they are. by Anonymous Coward · 2009-10-09 03:20 · Score: 4, Interesting

Then how can these evil squatters make any money?
1. Re:You don't know who they are, or where they are. by Daniel+Dvorkin · 2009-10-09 03:33 · Score: 3, Interesting
  
  Quite seriously, I suspect most of the squatters aren't in it for the money ... at least not yet. IIRC, it was a few years before people realized what a gold mine domain name squatting could be. Instead, I suspect most of the app name squatters are people who registered the name with the intention of making a real app, maybe registered similar names to prevent confusion, and then abandoned the project. (So, okay, they were in it for the money, but it was the money they hoped to make by selling the app, not by getting someone else to pay them for the name.) Similar things happened a lot in the early days of the web -- remember when there was a better than 50% chance that clicking on any random link would take you to an "under construction" banner? -- and to some degree they still happen on Sourceforge, although the system there is set up a little better to prevent the worst such stupidity.
  
  --
  The correlation between ignorance of statistics and using "correlation is not causation" as an argument is close to 1.
Realistically there is NO Solution by Anonymous Coward · 2009-10-09 03:32 · Score: 2, Insightful

The problem is us humans. We all know statistically that there is going to be a percentage of us that, no matter what is done, will find a way to be the low-life scum-sucking dirt bag we're all capable of.
And let's be honest with each other, can Apple HONESTLY check all these apps for approval? It's impossible. There is no way they invest enough money to check all these programs released... over 70,000, yeah right.
They need to start using the user review system more which unfortunately is also run by the same type of person I mentioned before. I hate squatters with all my being but is there are way around them... not in a free, capitalistic way there isn't and I'm willing to live with them in order for freedom.
Just one more thing in a long line of abuses... by Bones3D_mac · 2009-10-09 03:36 · Score: 3, Insightful

So lets see... we now have:
- App name squatting
- List jockeying (continuous updates to apps with no description of what was actually changed)
- List flooding (releasing dozens of variations of the same app with only minor differences... like a picture of a kitty!)
- Born-again apps (repeated removal and relaunching of the same app over and over)
Did I miss anything else?

--

8==8 Bones 8==8
No simple solution, really... by tlhIngan · 2009-10-09 03:57 · Score: 5, Insightful

There is no simple solution, really.
Periodic flushing? Well, what if your app takes a long time to develop? Maybe you weren't thinking of a simple 99-cent app, but something that's more than a novelty? If you flush too often, you discourage people from these kinds of apps because now they have to keep reserving it, and someone else can snatch it. This applies to anything - big devs or small. And you can't say "let's make it once a year" - people being squatted don't want to wait a whole year. But "let's make it monthly" means apps undergoing slow development have to bear the burden.
Flush apps with no binaries? Same issue - dev will just submit a skeleton app to hold it off.
Limit of X apps/year? Well, that's just silly. Microsoft can pull it off, but the next /. headline you'll see is "Apple Limits Devs to 5 Apps". Sure it may help to avoid doing the next 10,000 flashlight and fart apps, but geez, that seems low and arbitrary. Good devs may find themselves caught in this as well - that's over 2 months of development per app, and some useful apps just don't command that sort of development time. Even a reasonable limit has to be rather high - probably around 100?
First app with name submitted gets it? Well, then you have the patent deal - you deny the guy who submitted a few minutes later an app with the same name. There are probably going to be a ton of unintended consequences, too.
Still, the Apple solution of non-negotiation (by not revealing the squatter's identity) is probably a good one - DNS squatters are in it for money, and they'll sell. Here, the name is reserved, but since you can't negotiate, all the squatter is doing is being an ass. There's no financial incentive to squat on a name because anyone wanting to use it can't find your details and contact you to pay $1000 for the name. So it's costing them $100/year with zero gain. At least domain squatters can get several thousand per name to help pay for the domain registrations. The Apple method leaves them $100 poorer each year - it's not listed on iTunes, there are no ads, and no one can contact you to buy the name.
Maybe a solution is no developer can hold more than say, 5 names at any one time. Approval of an app removes that name from the list (so they're holding 4 names and can add one). Those extra names can be returned to the pool at any time - for example, a developer creates an app which can go under 5 possible names, then at the last minute they pick one and submits under that name. Since they have no use for the other 4, they can release them so freeing up more reserved name slots for their next app. Big dev houses probably already have multiple dev accounts, so they can reserve multiple names for multiple apps. 5 or 10 names reserved for apps in development ought to be enough. Implement it right (e.g., a dev can test to see if a name is taken before having to give up one of their existing ones) and it may reduce this problem.
Still - why squat on the names? People can't buy it off of you, so there's no financial incentive (which is why there are so many domain squatters), other than being an ass.
Bathroom routine? by macraig · 2009-10-09 04:06 · Score: 2, Funny

"The solution seems simple: for Apple to flush all the apps that have not submitted binaries, and to repeat periodically."
So...
1. squat
2. flush
3. repeat
4. errrr, profit?
Re:Shouldn't apple at least check the apps by liquidsin · 2009-10-09 04:16 · Score: 2, Funny

looks like somebody needs a hug

--
do not read this line twice.