There's no way I can use iOS. Sure it's simple, but not in a good way!
But I'm genuinely stumped when it comes to using a bunch of apps from small developers with no real accountability. I'm currently the COO for a cybersecurity strategy consultancy, and the first thing we tell our clients is to not allow any untrusted players into their cybersecurity supply chain. Our criteria for using any kind of software is that the vendors have to meet criteria consistent with best practices in cybersecurity:
1) Reputable company with 3+ years in operation that is either publicly traded or, if private, has well known investors.
2) Physical address in the EU, US or Canada
3) Named officers, who are legally accountable for their company's actions.
4) Strong Privacy and Security Policies consistent with
NIST Special Publication 800-171
This works fine for companies like Blackberry and Microsoft, but it pretty much excludes small app developers targeting the individual user market. As an example, "Sound Profile" fails every single one of our criteria except for having a physical address in Spain! For example, here is the statement on Permissions:
Attachment 430439. It says:
That's basically a blank check for permissions!
The developer might be great, and I would be happy to pay for the app, but I can't violate our policies, which we provide in writing as part of our contract with our clients.
For my personal use, the DTEK app is sufficient to give me confidence that most apps are behaving as described, but I won't risk my reputation for the convenience of a few small apps.
As for Solid Explorer, again, I would not endorse any of my clients granting highly privileged file manager permissions to a small company in Warsaw. I know many, many wonderful software developers in Poland, and my instinct, like yours, is that NeatBytes is a legit company working hard on developing a useful Android app, but installing it is a non-starter, as it would be for practically any Fortune 1000 company or Tier 1-3 supplier to the federal government in the US.
Until I find a reputable file manager, I'll just have to transfer files by USB cable, I guess. Sure doesn't feel like a step forward from BB10!
The whole App Store model is problematic, because there is no real accountability for many of the apps distributed. I know that lots of people download whatever works for them, but, just because a practice is widely used and "normalized" doesn't mean it's safe.
It's hard enough protecting our networks from seemingly legitimate products like Kaspersky without trying to guarantee the security of tiny companies about whom we have almost no verified information.