Aegis is sadly terrible, IMO, because of three things:
- Lack of token granularity (arguably this is hard to improve because it forces a server-client IPC architecture _everywhere_, and eventually you obtain something like Android has)
- User not in control.
- Integrity validation crap.

If all 3 issues can be fixed -- then I would actually willingly install such a "security" platform on my device. Because the ability to prevent $RANDOM_STORE_PROGRAMS from placing phone calls is interesting.