EditorsAbout the SiteComes vs. MicrosoftUsing This Web SiteSite ArchivesCredibility IndexOOXMLOpenDocumentPatentsNovellNews DigestSite NewsRSS

10.23.13

Android With Proprietary Apps Installed is Not Secure

Posted in GNU/Linux, Google, Security at 6:39 am by Dr. Roy Schestowitz

Proprietary on top of Free/libre is like mud below a fortress

A fortress

Summary: The need to be able to verify that programs treat users respectfully and how it applies to Android

A new version of Android is said to be just days away [1]. There are already some rumoured features [2], but it is hard to tell more because the development process is not as open/free as Google would like us to believe. Google already lost a prominent FOSS figure because, according to him, Android was not so loyal to freedom or openness anymore.

“One cannot build back doors if they become visible. It’s a case of trust through deterrence.”Android is becoming somewhat of a de facto standard in watches these days [3,4], even though some companies go the other way [5]. In this area of watches, unlike CCTV-like eyeglasses (Google also explores taking fingerprints soon [6]), partners of Google appear to be ahead of Google. The same goes for TVs based on Android [7]. Android is almost becoming a de facto standard in embedded also [8].

Let’s accept the fact that Android is here to stay and to thrive (around 80% market share now), but how secure is it really? According to a report from The Wall Street Journal, spies are now accessing the microphone (and maybe camera) of Android devices remotely. Let’s accept the fact that the user is the weakest link (installing malware on one’s own [9]) and without a doubt users will always need to step in and do potentially risky things (adding software, as promoted in [10-12] this month, is the strength of Android). We are left dependent on trusting developers, not just within Google but also outside it (the community is developers is broadening [13]). Many of them are releasing proprietary software into Google’s digital market, so how can we — as users — check that these applications really respect our privacy and strictly obey OS-level restrictions? The users need not be developers, they can simply rely on several other users auditing or forking the code out of curiosity. One cannot build back doors if they become visible. It’s a case of trust through deterrence.

Related/contextual items from the news:

  1. Android 4.4 KitKat tweets hint at Oct. 28 launch

    Two pictures shared by @KitKat on Twitter suggest Google will launch the operating system on October 28.

  2. Android signs up for official default setting for texting

    A single messaging app for Android might be closer than you think, as Google unveils new settings in KitKat to officially set a default text-messaging app.

  3. Sony SmartWatch 2 ticks as Google watch rumors tock

    Sony shipped its Android-based SmartWatch 2 in the U.S. market, featuring higher-resolution, NFC sync, and water resistance, while also launching its Xperia Z Ultra phablet and Xperia Z1 phone. Meanwhile, Google’s long awaited smartwatch — rumored to be a Nexus model codenamed Gem and featuring Google Now technology — is expected to be unveiled with Android 4.4 (aka KitKat) on Oct. 31.

  4. Review: Samsung Galaxy Gear smartwatch

    When a new tech product launches, reviewers usually come to some sort of consensus. Often something just clicks, and you see raves across the board. Other times, the product has obvious flaws, and critics are all equally quick to point those out. The early consensus for the Samsung Galaxy Gear, however, isn’t quite jiving with us. Though it’s been almost universally panned, we had a very different take on it. Why? Read on, as Gizmag gives you a different perspective on the new Samsung Galaxy Gear smartwatch.

  5. Nike’s no-Android stance on FuelBand is a huge mistake

    Nike is only shooting itself in the foot with its stubborn reluctance to work with Android.

  6. Android Fingerprint Sensors Coming Soon

    A coming web standard being pursued by the FIDO Alliance seeks to enable much wider use of biometric sensors to access accounts. FIDO should reduce, if not eliminate all together, the use of passwords to access accounts on mobile devices. The initial FIDO-equipped Android devices are on track to roll out in early 2014.

  7. Devs jump on Android TV ahead of Google

    Google may be keeping quiet on when the Google TV platform will be updated to the Jelly Bean operating system, but developers are already hard at work.

  8. Android HDMI-stick mini-PC includes Ethernet port

    Zhongshan Gosinggo has begun selling a 4.1 x 1.5 x 0.6-inch Android 4.1 mini-PC that includes both WiFi and Ethernet ports. The Gosinggo GSG-TB-06 is equipped with a 1GHz Allwinner A10 processor and Mali-400 GPU, as well as 1GB of DDR3 RAM, up to 32GB of flash, an HDMI port, and dual USB ports.

  9. How Secure Is Android, Really?

    Let’s get this out of the way. Android as an operating system is very secure. It has multiple layers of protection to keep malware at bay, and it requires your specific permission to do almost anything that could lead to your data or the system being compromised. However, Android is an open system that trusts you the user and its community of developers to do the right thing. If you want to, you can give away a lot of permissions, and even access to deeper parts of the system if you’ve rooted your phone. Android tries to protect you from yourself, but if you nudge it, it lets you have the final say on what to install (and from where, like unknown sources and beyond the regularly-patrolled walls of Google Play) and who to give permissions to.

  10. New Aviate app makes Android phones more intuitive

    There comes a time in every smart phone owner’s life when the number of installed apps outweighs the brainpower available to the owner to keep them all managed. Enter Aviate, a new home screen management system for Android that aims to keep everything under control, intelligently.

  11. 9 of the best video-player apps for Android
  12. Top 15 Android tablet apps for work and play

    Android tablets have come a long way since the first, the Motorola XOOM, appeared. The right apps make them great tablets for both work and play.

  13. The Big Android BBQ 2013 in pictures

    The Big Android BBQ is a unique combination of developer conference and enthusiast get-together, all wrapped up in a general celebration of the Android operating system. Attendees come from all over the world to share ideas, best practices, or just to hang out with friends. This year the conference saw more than 40 sessions ranging from Glass development to hardware hacking, with more than a few things in between.

Share this post: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Digg
  • del.icio.us
  • Reddit
  • co.mments
  • DZone
  • email
  • Google Bookmarks
  • LinkedIn
  • NewsVine
  • Print
  • Technorati
  • TwitThis
  • Facebook

If you liked this post, consider subscribing to the RSS feed or join us now at the IRC channels.

Pages that cross-reference this one

What Else is New


  1. Union-Busting Action by Team Battistelli Takes Heavy Toll, Techrights Will Continue to Expose EPO Injustices to the World

    The Staff Union of the European Patent Office, SUEPO, which faced unprecedented and probably illegal (based on local laws) attacks, is being weakened by the worst President ever, whose own management team seems to be collapsing along with the institution he is destroying in just a few years



  2. A Lot More Fake News About the UPC, Trying to Convince People That the UK is Ratifying (It's Not, It Cannot)

    Response to some of the latest misleading (self-serving) whispers about the fate of the Unified Patent Court (UPC), which is in a deadlock due to Brexit



  3. Rumours Suggest That EPO Management is Aware of Decline in Patent Quality and is Thus Actively Lying About it to the Media/Public

    Whenever Battistelli brags about patent quality he may be consciously and deliberately lying through his teeth if the latest rumours are correct



  4. Links 17/1/2017: GIMP Plans, New Raspberry Pi Product

    Links for the day



  5. Resumption of EPO Propaganda ('Meet the President') Officially Starts Tomorrow

    Yet another one of these foolish 'Meet the President' stunts, scheduled to take place tomorrow morning



  6. Caricature: Battistelli's New Year's Resolution (More EPO Lies)

    The latest cartoon being circulated within the European Patent Office (EPO)



  7. Donald Trump Gives New Hope to Patent Aggressors and Patent Trolls

    Pessimism about the prospects of patent progress or patent reform in an age of staunchly pro-business Conservatives and glorification of protectionism



  8. More Fake News About the Unified Patent Court (UPC) Based on Lobbying Tactics From Bristows UPC and the Preparatory Committee

    Unified Patent Court (UPC) lobbying has gotten so bad that it now infiltrates general media outlets, where people are asked to just blindly assume that the UPC is coming and is inevitable, even though it's clearly in a limbo and is unlikely to see the light of day



  9. EPO Totally Silent for a Month, But Deep Inside There Are Serious Cracks

    The situation at the EPO seems to be pretty grim, even at the top-level management, and the EPO has gone into permanent silence mode



  10. Links 16/1/2017: Linux 4.10 RC4, Linux Mint 18.1 'Serena' KDE Edition Beta

    Links for the day



  11. 'Financial Director' Publishes Fake News About the Unitary Patent (UPC)

    Response to some of the latest UPC propaganda, which strives to misinform Financial Directors so as to enrich the author and his firm



  12. Independent and Untainted Web Sites About Patents Are Still Few and Rare

    Commentary about news sources that we rely on, as well as the known pitfalls or the vested interests deeply ingrained in them



  13. The 20% Rule: Patent Trolling Suffers Double-Digit Declines and Patent Troll Technicolor is Collapsing

    Significant demise or total catastrophe for the modus operandi (method) of going after companies with a pile of patents and threats of litigation



  14. US Supreme Court Did Not End Apple's Patent Disputes Over Android (Linux), More Cases Imminent

    An overview of some very recent news regarding the highest court in the United States, which has been dealing with cases that can determine the fate of Free/Open Source software in an age of patent uncertainty and patent thickets surrounding mobility



  15. Links 15/1/2017: Switching From OS X to GNU/Linux, Debian 8.7 Released

    Links for the day



  16. Number of New Patent Cases in the US Fell 25% Last Year, Thanks in Part to the Demise of Software Patent Trolls

    Litigation and prosecutions that rely on patents (failure to resolve disputes, e.g. by sharing ideas, out of court) is down very sharply, in part because firms that make nothing at all (just threaten and/or litigate) have been sinking after much-needed reform



  17. America Invents Act Improved Patent Quality, But Right Wingers Threaten to Make It Worse Again

    The past half a decade saw gradual improvement in assessment of patents in the United States, but there is a growing threat and pressure from the patent microcosm to restore patent maximalism and chaos



  18. PTAB -- Not Deterred by Courts -- Continues to Invalidate a Lot of Software Patents

    The Patent Trial and Appeal Board (PTAB) continues to make progress reforming the patent system by eliminating a lot of patents and setting an example (or new standards) for what is patent-eligible after Alice



  19. EPO Abuses Come Under Fire From Politicians in Luxembourg

    Luxembourg is the latest nation in which concerns about the EPO's serious abuses are brought up not only by the media but also by politicians



  20. Constitutionality as a Barrier and Brexit Barriers to UPC Keep the Whole Pipe Dream Deadlocked

    The UPC is still going nowhere fast, but the demise (or death) of the UPC as we know it must not be taken for granted



  21. Links 14/1/2017: Wine 2.0 RC5 and AryaLinux 2017 Released

    Links for the day



  22. Links 13/1/2017: Linux 4.9.3 and Linux 4.4.42

    Links for the day



  23. Brexit Means No UPC (Unified Patent Court)

    Now that Jo Johnson, Boris Johnson's brother, is officially declared the new minister for intellectual property in the UK everything that Lucy Neville-Rolfe wrote is as solid as paper bag on a rainy London day



  24. Patent Trolls and Software Patents: CloudTrade, Patent Practitioners Density, and Via Licensing

    Software patents armament from a British company, charted concentration of the patent microcosm in the United States, and US-leaning patent trolls that prey on China



  25. Patent Maximalism -- Like Copyright Maximalism -- Relies on Misconceptions and Mass Deception

    The latest examples of discussions about patent scope, courtesy of those looking to benefit financially by pushing such monopolies to the max



  26. Software Patents Still Promoted by IBM and Its Lobbyist (and Former Employee) David Kappos, in Defiance of Much-Needed US Patent Reform

    While the corporate media celebrates IBM as though it's some kind of 'champion' for hoarding patents that it then uses to attack companies which actually grow



  27. Brexit/Trump Effect: Patent Systems With Institutional Corruption and Nepotism

    Rumours about Britain's head of patents (and copyrights etc.) being the brother of the Brexit campaigner and Foreign Minister; meanwhile, on the other side of the Atlantic, rumours suggest that the corrupt judge Rader might be the next head of patents in the United States



  28. Links 11/1/2017: X.Org Server 1.19.1, GitHub's Atom 1.13

    Links for the day



  29. The Patent Microcosm is Already Sucking up to Donald Trump in an Effort to Enrich Itself at Everyone's Expense

    Four new examples of patent maximalists embracing/adopting the pseudo-populist slogan to advance their goals of increasing litigation (which they profit from) and undermining PTAB (which made patents great in the quality sense)



  30. Patent Quality in the United States Can Only be Assessed at the Patent Trial and Appeal Board (PTAB) and the Courts

    The travesty of patent offices in the US and China, where the goal or the accomplishment is measured in terms of the number of patents rather than their quality


CoPilotCo

RSS 64x64RSS Feed: subscribe to the RSS feed for regular updates

Home iconSite Wiki: You can improve this site by helping the extension of the site's content

Home iconSite Home: Background about the site and some key features in the front page

Chat iconIRC Channel: Come and chat with us in real time

CoPilotCo

Recent Posts