“A key component in any vector is speed. Slowing down vector speed is nearly as good as vector elimination.” +1 Insightful.
I did some simulations a while back, comparing spread rate on a network where 10% of the systems were susceptable, versus 90%. Stunning differences.
But - not the issue apple cares about, methinks - they aren’t concerned about virus, so much as trojan.
Here’s a scary example: I embed, in my giant (and popular) Codea app, a well obfuscated routine (it’s in the middle of a compressed blob of data used for a font, say). That routine is going to trigger at some point in the future, and on any time past my trigger day, my app displays an advertisement for, uh, Ford Trucks (Built Ford Tough!). Apple is pretending that their review process would have caught this and prevented it - the app is a trojan for it’s actual purpose, and violates their policies about that right and left.
Not scary enough? Ok - the app shows a picture (photoshopped) of your-favorite-political-candidate-here with a goat and a midget.
Sorry - it’s hard to think of a good payload when you can’t talk to the real world. I hate to even say it, but if we had sockets, you could do a pretty effective DDoS - you don’t need a lot of horsepower for that, you need a ton of clients. Yes, scary. Not very likely - a popular app would be vetted by many eyes, this being forced open source, but still.
mmm - that may be another angle. @Simeon, remind them this is open source code we’re sharing - the chance of someone doing shenanigans without it being immediately apparent and dealt with are minimal.
Point being - they probably are not concerned about the virus aspect so much as the trojan, and the trojan payload need not be something you or I consider bad - it could be as simple as advertising that Apple disapproves of. So far as Apple is concerned, it’s not you or I doing it - it’s TLL and Codea.