I never said that I thought it was easy. What I said is that that problem had long ago been solved, as can be readily observed in other POSIX systems. Securely creating and administrating multiple accounts with their respective program access is what UNIX and its derivatives was made for. But the cynical market drive towards “appliances” deliberately places the vendor in the role of administrator, rather than trusting the buyer to make or delegate those decisions. For better or worse, it seems apparent that those corporations profit from devices and code sharing more information than can be considered secure for the users.
For example, when installing an application in MacOS, I can choose whether to install it for the current user, or all users. Because the file system and OS can handle permissions, and recognize distinct user-spaces.
Point being to not accept excuses that it would add undue cost or complexity to include functionality in a Linux or BSD phone which is universal elsewhere. GUIs of the past 20 years or so have readily demonstrated that power-user functionality can be easily hidden away from those users who find it confusing or undesirable.
Having these devices be insecure for users, and having that insecurity exploited by a corporate minority is ultimately a choice.
