EditorsAbout the SiteComes vs. MicrosoftUsing This Web SiteSite ArchivesCredibility IndexOOXMLOpenDocumentPatentsNovellNews DigestSite NewsRSS


Android With Proprietary Apps Installed is Not Secure

Posted in GNU/Linux, Google, Security at 6:39 am by Dr. Roy Schestowitz

Proprietary on top of Free/libre is like mud below a fortress

A fortress

Summary: The need to be able to verify that programs treat users respectfully and how it applies to Android

A new version of Android is said to be just days away [1]. There are already some rumoured features [2], but it is hard to tell more because the development process is not as open/free as Google would like us to believe. Google already lost a prominent FOSS figure because, according to him, Android was not so loyal to freedom or openness anymore.

“One cannot build back doors if they become visible. It’s a case of trust through deterrence.”Android is becoming somewhat of a de facto standard in watches these days [3,4], even though some companies go the other way [5]. In this area of watches, unlike CCTV-like eyeglasses (Google also explores taking fingerprints soon [6]), partners of Google appear to be ahead of Google. The same goes for TVs based on Android [7]. Android is almost becoming a de facto standard in embedded also [8].

Let’s accept the fact that Android is here to stay and to thrive (around 80% market share now), but how secure is it really? According to a report from The Wall Street Journal, spies are now accessing the microphone (and maybe camera) of Android devices remotely. Let’s accept the fact that the user is the weakest link (installing malware on one’s own [9]) and without a doubt users will always need to step in and do potentially risky things (adding software, as promoted in [10-12] this month, is the strength of Android). We are left dependent on trusting developers, not just within Google but also outside it (the community is developers is broadening [13]). Many of them are releasing proprietary software into Google’s digital market, so how can we — as users — check that these applications really respect our privacy and strictly obey OS-level restrictions? The users need not be developers, they can simply rely on several other users auditing or forking the code out of curiosity. One cannot build back doors if they become visible. It’s a case of trust through deterrence.

Related/contextual items from the news:

  1. Android 4.4 KitKat tweets hint at Oct. 28 launch

    Two pictures shared by @KitKat on Twitter suggest Google will launch the operating system on October 28.

  2. Android signs up for official default setting for texting

    A single messaging app for Android might be closer than you think, as Google unveils new settings in KitKat to officially set a default text-messaging app.

  3. Sony SmartWatch 2 ticks as Google watch rumors tock

    Sony shipped its Android-based SmartWatch 2 in the U.S. market, featuring higher-resolution, NFC sync, and water resistance, while also launching its Xperia Z Ultra phablet and Xperia Z1 phone. Meanwhile, Google’s long awaited smartwatch — rumored to be a Nexus model codenamed Gem and featuring Google Now technology — is expected to be unveiled with Android 4.4 (aka KitKat) on Oct. 31.

  4. Review: Samsung Galaxy Gear smartwatch

    When a new tech product launches, reviewers usually come to some sort of consensus. Often something just clicks, and you see raves across the board. Other times, the product has obvious flaws, and critics are all equally quick to point those out. The early consensus for the Samsung Galaxy Gear, however, isn’t quite jiving with us. Though it’s been almost universally panned, we had a very different take on it. Why? Read on, as Gizmag gives you a different perspective on the new Samsung Galaxy Gear smartwatch.

  5. Nike’s no-Android stance on FuelBand is a huge mistake

    Nike is only shooting itself in the foot with its stubborn reluctance to work with Android.

  6. Android Fingerprint Sensors Coming Soon

    A coming web standard being pursued by the FIDO Alliance seeks to enable much wider use of biometric sensors to access accounts. FIDO should reduce, if not eliminate all together, the use of passwords to access accounts on mobile devices. The initial FIDO-equipped Android devices are on track to roll out in early 2014.

  7. Devs jump on Android TV ahead of Google

    Google may be keeping quiet on when the Google TV platform will be updated to the Jelly Bean operating system, but developers are already hard at work.

  8. Android HDMI-stick mini-PC includes Ethernet port

    Zhongshan Gosinggo has begun selling a 4.1 x 1.5 x 0.6-inch Android 4.1 mini-PC that includes both WiFi and Ethernet ports. The Gosinggo GSG-TB-06 is equipped with a 1GHz Allwinner A10 processor and Mali-400 GPU, as well as 1GB of DDR3 RAM, up to 32GB of flash, an HDMI port, and dual USB ports.

  9. How Secure Is Android, Really?

    Let’s get this out of the way. Android as an operating system is very secure. It has multiple layers of protection to keep malware at bay, and it requires your specific permission to do almost anything that could lead to your data or the system being compromised. However, Android is an open system that trusts you the user and its community of developers to do the right thing. If you want to, you can give away a lot of permissions, and even access to deeper parts of the system if you’ve rooted your phone. Android tries to protect you from yourself, but if you nudge it, it lets you have the final say on what to install (and from where, like unknown sources and beyond the regularly-patrolled walls of Google Play) and who to give permissions to.

  10. New Aviate app makes Android phones more intuitive

    There comes a time in every smart phone owner’s life when the number of installed apps outweighs the brainpower available to the owner to keep them all managed. Enter Aviate, a new home screen management system for Android that aims to keep everything under control, intelligently.

  11. 9 of the best video-player apps for Android
  12. Top 15 Android tablet apps for work and play

    Android tablets have come a long way since the first, the Motorola XOOM, appeared. The right apps make them great tablets for both work and play.

  13. The Big Android BBQ 2013 in pictures

    The Big Android BBQ is a unique combination of developer conference and enthusiast get-together, all wrapped up in a general celebration of the Android operating system. Attendees come from all over the world to share ideas, best practices, or just to hang out with friends. This year the conference saw more than 40 sessions ranging from Glass development to hardware hacking, with more than a few things in between.

Share this post: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Digg
  • del.icio.us
  • Reddit
  • co.mments
  • DZone
  • email
  • Google Bookmarks
  • LinkedIn
  • NewsVine
  • Print
  • Technorati
  • TwitThis
  • Facebook

If you liked this post, consider subscribing to the RSS feed or join us now at the IRC channels.

Pages that cross-reference this one

What Else is New

  1. Public Protests by European Patent Office (EPO) Staff Weaken the EPO's Attacks on the Media

    Where things stand when it comes to the EPO's standoff against publications and why it's advisable for EPO staff to stage standoffs against their high-level management, which is behind a covert crackdown on independent media (while greasing up corporate media)

  2. Why the European Patent Office Cannot Really Sue and Why It's All -- More Likely Than Not -- Just SLAPP

    Legal analysis by various people explains why the EPO's attack dogs are all bark but no bite when it comes to threats against publishers

  3. How the EPO Twisted Defamation Law in a Failed Bid to Silence Techrights

    Using external legal firms (not the EPO's own lawyers), the EPO has been trying -- and failing -- to silence prominent critics

  4. East Texas and Its Cautionary Tale: Software Patents Lead to Patent Trolls

    Lessons from US media, which focuses on the dire situation in Texas courts, and how these relate to the practice of granting patents on software (the patent trolls' favourite weapon)

  5. The Latest EPO Spin: Staff Protesters Compared to 'Anti-Patent Campaigners' or 'Against UPC'

    Attempts to characterise legitimate complaints about the EPO's management as just an effort to derail the patent office itself, or even the patent system (spin courtesy of EPO and its media friends at IAM)

  6. The Serious Implication of Controversial FTI Consulting Contract: Every Press Article About EPO Could Have Been Paid for by EPO

    With nearly one million dollars dedicated in just one single year to reputation laundering, one can imagine that a lot of media coverage won't be objective, or just be synthetic EPO promotion, seeded by the EPO or its peripheral PR agents

  7. EPO: We Have Always Been at War With Europe (or Europeans)

    The European Patent Office (EPO) with its dubious attacks on free speech inside Europe further unveiled for the European public to see (as well as the international community, which oughtn't show any respect to the EPO, a de facto tyranny at the heart of Europe)

  8. What Everyone Needs to Know About the EPO's New War on Journalism

    A detailed list of facts or observations regarding the EPO's newfound love for censorship, even imposed on outside entities, including bloggers (part one of several to come)

  9. EPO Did Not Want to Take Down One Techrights Article, It Wanted to Take Down Many Articles Using Intimidation, SLAPPing, and Psychological Manipulation Late on a Friday Night

    Recalling the dirty tactics by which the European Patent Office sought to remove criticism of its dirty secret deals with large corporations, for whom it made available and was increasingly offering preferential treatment

  10. The European Private Office: What Was Once a Public Service is Now Crony Capitalism With Private Contractors

    The increasing privatisation of the European Patent Office (EPO), resembling what happens in the UK to the NHS, shows that the real goal is to crush the quality of the service and instead serve a bunch of rich and powerful interests, in defiance of the original goals of this well-funded (by taxpayers) organisation

  11. Microsoft Once Again Disregards People's Settings and Abuses Them, Again Pretends It's Just an Accident

    A conceited corporation, Microsoft, shows not only that it exploits its botnet to forcibly download massive binaries without consent but also that it vainly overrides people's privacy settings to spy on these people, sometimes with help from malicious hardware vendors such as Dell or Lenovo

  12. When the EPO Liaised With Capone (Literally) to Silence Bloggers, Delete Articles

    A dissection of the EPO's current media strategy, which involves not only funneling money into the media but also actively silencing opposing views

  13. Blogger Who Wrote About the EPO's Abuses Retires

    Bloggers' independent rebuttal capability against a media apparatus that is deep in the EPO's pocket is greatly diminished as Jeremy Phillips suddenly retires

  14. Leaked: EPO Award of €880,000 “in Order to Address the Media Presence of the EPO” (Reputation Laundering)

    The European Patent Office, a public body, wastes extravagant amounts of money on public relations (for 'damage control', like FIFA's) in an effort to undermine critics, not only among staff (internally) but also among the media (externally)

  15. Links 27/11/2015: KDE Plasma 5.5 Plans, Oracle Linux 7.2

    Links for the day

  16. Documents Needed: Contract or Information About EPO PR/Media Campaign to Mislead the World

    Rumour that the EPO spends almost as much as a million US dollars “with some selected press agencies to refurbish the image of the EPO”

  17. Guest Post: The EPO, EPC, Unitary Patent and the Money Issue

    Remarks on the Unitary Patent (UP) and the lesser-known aspects of the EPO and EPC, where the “real issue is money, about which very little is discussed in public...”

  18. Saving the Integrity of the European Patent Office (EPO)

    Some timely perspective on what's needed at the European Patent Office, which was detabilised by 'virtue' of making tyrants its official figureheads

  19. A Call for Bloggers and Journalists: Did EPO Intimidate and Threaten You Too? Please Speak Out.

    An effort to discover just how many people out there have been subjected to censorship and/or self-censorship by EPO aggression against the media

  20. European Patent Office (EPO) a “Kingdom Above the EU Countries, a Tyranny With ZERO Accountability”

    Criticism of the EPO's thuggish behaviour and endless efforts to crush dissenting voices by all means available, even when these means are in clear violation of international or European laws

  21. Links 26/11/2015: The $5 Raspberry Pi Zero, Running Sans Systemd Gets Hard

    Links for the day

  22. EPO Management Needs to Finally Recognise That It Itself is the Issue, Not the Staff or the Unions

    A showing of dissent even from the representatives whom the EPO tightly controls and why the latest union-busting goes a lot further than most people realise

  23. Even the EPO Central Staff Committee is Unhappy With EPO Management

    The questions asked by the Central Staff Committee shared for the public to see that not only a single union is concerned about the management's behaviour

  24. The Broken Window Economics of Patent Trolls Are Already Coming to Europe

    The plague which is widely known as patent trolls (non-practicing entities that prey on practicing companies) is being spread to Europe, owing in part to misguided policies and patent maximalists

  25. Debunking the EPO's Latest Marketing Nonsense From Les Échos and More on Benoît Battistelli's Nastygram to French Politician

    Our detailed remarks about French brainwash from the EPO's media partner (with Benoît Battistelli extensively quoted) and the concerns increasingly raised by French politicians, who urge for national or even continental intervention

  26. The Sun King Delusion: The Views of Techrights Are Just a Mirror of EPO Staff Unions

    Tackling some emerging spin we have seen coming from Battistelli's private letters -- spin which strives to project the views of Techrights onto staff unions and why it's very hypocritical a form of spin

  27. Links 25/11/2015: Webconverger 33.1, Netrunner 17 Released

    Links for the day

  28. United They Stand: FFPE-EPO Supports Suspended Staff Representatives From SUEPO

    An obscure union from the Dutch side of things at the EPO is expressing support for the suspended colleagues from SUEPO (more German than Dutch)

  29. Censoring WIPR Article About Censorship by EPO

    A testament to how terrified journalists have become when it comes to EPO coverage, to the point of deleting entire paragraphs

  30. Censorship at the EPO Escalates: Now We Have Threats to Sue Publishers

    Having already blocked Techrights, the EPO's management proceeds to further suppressions of speech, impeding its staff's access to independently-distributed information (neither ordinary staff nor management)


RSS 64x64RSS Feed: subscribe to the RSS feed for regular updates

Home iconSite Wiki: You can improve this site by helping the extension of the site's content

Home iconSite Home: Background about the site and some key features in the front page

Chat iconIRC Channel: Come and chat with us in real time


Recent Posts