Published On: Fri, Apr 13th, 2018

Are hardware makers doing adequate to keep Android phones secure?

For all a good of Android’s open-source approach, one of a transparent and unchanging downsides is that a responsibility to emanate program updates falls on a manufacturer. That can meant disappointment for those watchful for a latest and biggest underline updates — and in some cases, it can put your phone during risk with behind or missed confidence updates.

A span of researchers during Security Research Labs recently common a investigate with Wired highlighting some of these risks. The team’s commentary are a outcome of contrast 1,200 Android handsets from all a vital manufacturers over a march of dual years, examining either manufacturers had offering a confidence rags as advertised.

According to SRL, missed confidence rags were detected on a far-reaching operation of opposite handsets opposite manufacturers. Sony and Samsung were both flagged as carrying missed some confidence rags — in some cases in annoy of stating that they were adult to date. “It’s roughly unfit for a user to know that rags are indeed installed,” one of a researchers told a site.

Xiaomi, Nokia, HTC, Motorola and LG all done a list, as well, while TCL and ZTE fared a misfortune in a study, with, on average, not carrying commissioned some-more than 4 of a rags they claimed to have commissioned on a given device.

In a matter supposing to TechCrunch, Google forked to a significance of several opposite means used to secure a Android ecosystem. The association believes that a SRL commentary competence not tell a full story when it comes to gripping inclination secure.

“We would like to appreciate Karsten Nohl and Jakob Kell for their continued efforts to strengthen a confidence of a Android ecosystem,” a association writes. “We’re operative with them to urge their showing mechanisms to comment for situations where a device uses an swap confidence refurbish instead of a Google suggested confidence update. Security updates are one of many layers used to strengthen Android inclination and users. Built-in height protections, such as focus sandboxing, and confidence services, such as Google Play Protect, are only as important. These layers of security—combined with a extensive farrago of a Android ecosystem—contribute to a researchers’ conclusions that remote exploitation of Android inclination stays challenging.” 

The association also forked us to this year in examination post, that sheds a bit some-more light on a matter.

About the Author

Leave a comment

XHTML: You can use these html tags: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <s> <strike> <strong>