EditorsAbout the SiteComes vs. MicrosoftUsing This Web SiteSite ArchivesCredibility IndexOOXMLOpenDocumentPatentsNovellNews DigestSite NewsRSS

10.23.13

Android With Proprietary Apps Installed is Not Secure

Posted in GNU/Linux, Google, Security at 6:39 am by Dr. Roy Schestowitz

Proprietary on top of Free/libre is like mud below a fortress

A fortress

Summary: The need to be able to verify that programs treat users respectfully and how it applies to Android

A new version of Android is said to be just days away [1]. There are already some rumoured features [2], but it is hard to tell more because the development process is not as open/free as Google would like us to believe. Google already lost a prominent FOSS figure because, according to him, Android was not so loyal to freedom or openness anymore.

“One cannot build back doors if they become visible. It’s a case of trust through deterrence.”Android is becoming somewhat of a de facto standard in watches these days [3,4], even though some companies go the other way [5]. In this area of watches, unlike CCTV-like eyeglasses (Google also explores taking fingerprints soon [6]), partners of Google appear to be ahead of Google. The same goes for TVs based on Android [7]. Android is almost becoming a de facto standard in embedded also [8].

Let’s accept the fact that Android is here to stay and to thrive (around 80% market share now), but how secure is it really? According to a report from The Wall Street Journal, spies are now accessing the microphone (and maybe camera) of Android devices remotely. Let’s accept the fact that the user is the weakest link (installing malware on one’s own [9]) and without a doubt users will always need to step in and do potentially risky things (adding software, as promoted in [10-12] this month, is the strength of Android). We are left dependent on trusting developers, not just within Google but also outside it (the community is developers is broadening [13]). Many of them are releasing proprietary software into Google’s digital market, so how can we — as users — check that these applications really respect our privacy and strictly obey OS-level restrictions? The users need not be developers, they can simply rely on several other users auditing or forking the code out of curiosity. One cannot build back doors if they become visible. It’s a case of trust through deterrence.

Related/contextual items from the news:

  1. Android 4.4 KitKat tweets hint at Oct. 28 launch

    Two pictures shared by @KitKat on Twitter suggest Google will launch the operating system on October 28.

  2. Android signs up for official default setting for texting

    A single messaging app for Android might be closer than you think, as Google unveils new settings in KitKat to officially set a default text-messaging app.

  3. Sony SmartWatch 2 ticks as Google watch rumors tock

    Sony shipped its Android-based SmartWatch 2 in the U.S. market, featuring higher-resolution, NFC sync, and water resistance, while also launching its Xperia Z Ultra phablet and Xperia Z1 phone. Meanwhile, Google’s long awaited smartwatch — rumored to be a Nexus model codenamed Gem and featuring Google Now technology — is expected to be unveiled with Android 4.4 (aka KitKat) on Oct. 31.

  4. Review: Samsung Galaxy Gear smartwatch

    When a new tech product launches, reviewers usually come to some sort of consensus. Often something just clicks, and you see raves across the board. Other times, the product has obvious flaws, and critics are all equally quick to point those out. The early consensus for the Samsung Galaxy Gear, however, isn’t quite jiving with us. Though it’s been almost universally panned, we had a very different take on it. Why? Read on, as Gizmag gives you a different perspective on the new Samsung Galaxy Gear smartwatch.

  5. Nike’s no-Android stance on FuelBand is a huge mistake

    Nike is only shooting itself in the foot with its stubborn reluctance to work with Android.

  6. Android Fingerprint Sensors Coming Soon

    A coming web standard being pursued by the FIDO Alliance seeks to enable much wider use of biometric sensors to access accounts. FIDO should reduce, if not eliminate all together, the use of passwords to access accounts on mobile devices. The initial FIDO-equipped Android devices are on track to roll out in early 2014.

  7. Devs jump on Android TV ahead of Google

    Google may be keeping quiet on when the Google TV platform will be updated to the Jelly Bean operating system, but developers are already hard at work.

  8. Android HDMI-stick mini-PC includes Ethernet port

    Zhongshan Gosinggo has begun selling a 4.1 x 1.5 x 0.6-inch Android 4.1 mini-PC that includes both WiFi and Ethernet ports. The Gosinggo GSG-TB-06 is equipped with a 1GHz Allwinner A10 processor and Mali-400 GPU, as well as 1GB of DDR3 RAM, up to 32GB of flash, an HDMI port, and dual USB ports.

  9. How Secure Is Android, Really?

    Let’s get this out of the way. Android as an operating system is very secure. It has multiple layers of protection to keep malware at bay, and it requires your specific permission to do almost anything that could lead to your data or the system being compromised. However, Android is an open system that trusts you the user and its community of developers to do the right thing. If you want to, you can give away a lot of permissions, and even access to deeper parts of the system if you’ve rooted your phone. Android tries to protect you from yourself, but if you nudge it, it lets you have the final say on what to install (and from where, like unknown sources and beyond the regularly-patrolled walls of Google Play) and who to give permissions to.

  10. New Aviate app makes Android phones more intuitive

    There comes a time in every smart phone owner’s life when the number of installed apps outweighs the brainpower available to the owner to keep them all managed. Enter Aviate, a new home screen management system for Android that aims to keep everything under control, intelligently.

  11. 9 of the best video-player apps for Android
  12. Top 15 Android tablet apps for work and play

    Android tablets have come a long way since the first, the Motorola XOOM, appeared. The right apps make them great tablets for both work and play.

  13. The Big Android BBQ 2013 in pictures

    The Big Android BBQ is a unique combination of developer conference and enthusiast get-together, all wrapped up in a general celebration of the Android operating system. Attendees come from all over the world to share ideas, best practices, or just to hang out with friends. This year the conference saw more than 40 sessions ranging from Glass development to hardware hacking, with more than a few things in between.

Share this post: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Digg
  • del.icio.us
  • Reddit
  • co.mments
  • DZone
  • email
  • Google Bookmarks
  • LinkedIn
  • NewsVine
  • Print
  • Technorati
  • TwitThis
  • Facebook

If you liked this post, consider subscribing to the RSS feed or join us now at the IRC channels.

Pages that cross-reference this one

What Else is New


  1. The United States Has Gotten Over Software Patents

    A roundup of new articles about software patents in the United States, 2 years into the post-Alice era (the US Supreme Court deeming patents on software too abstract to have merit)



  2. More Lies From President Benoît Battistelli and the EPO Crisis Which Continues to Deepen

    The European Patent Office (EPO), collectively speaking, is still wrestling with a Battistelli infiltration (a circle of high-level managers) which habitually lies and viciously attacks those who dare counter these lies



  3. Links 27/8/2016: Torvalds and GPL, “DOD Must Embrace Open-Source Software”

    Links for the day



  4. Links 26/8/2016: Maru OS Resurfaces, Android More Reliable Than 'i' Things, PC-BSD Becomes TrueOS

    Links for the day



  5. Good Job, David Kappos, Says the 'Boss' (IBM)

    Responses to the latest call against Alice (eliminator of many software patents), courtesy of the man from IBM (still paid by IBM) who was responsible for the policy that blindly approved a lot of software patents in the US



  6. Being for Patent Quality or Against Patenting Excess Does Not Make You Anti-Patents

    Like IAM, which tries to portray sceptics and critics of software patents as "anti-patents", IP Watchdog (or Watchtroll as we call it) is 'trolling' the Electronic Frontier Foundation, simply because it expressed an opinion that patent maximalists cannot tolerate



  7. Erosion of Patent Quality Enables Patent Extortion With Large Portfolios of Low Validity Rate

    Revisiting the EPO's vision of poor patent examination and the effect of discriminatory granting practices, favouring patent bullies such as Microsoft (which actively attacks Linux using low-quality and usually pure software patents)



  8. The EPO's Francesco Zaccà Presenting in Turin Alongside Patent Trolls (Like the Patent Mafia Sisvel) and Lobbyists/Front Groups for Software Patents, UPC

    Benjamin Henrion (FFII) on seeing the EPO alongside patent trolls and other nefarious actors, doing what they do best, which is undermining public interests and harming patent quality



  9. The EPO, USPTO, and Patent Microcosm Peddle Myths About Patents in Public Universities and Research

    Tackling some of the commonly-spread myths about patents as "saving lives" and "promoting research" (in practice leading to the death of poor people and promoting trolls)



  10. Large Corporations' Lobbyist David Kappos Disgraces Former Employer USPTO by Meddling in Their Affairs on Software Patents, Downplaying the Supreme Court

    The latest lobbying from David Kappos, who blatantly exploits his connections in patent circles to promote software patents and work towards their resurgence after Alice v CLS Bank



  11. Journal of Intellectual Property Law and Practice Calls the European Patent Office “Rotten”, Other Sources Scrutinise Recent Moves

    The patent office which was once known for being the best bar none is rotting under the Frenchman Benoît Battistelli, who made himself and his friends the main clients of the Office



  12. PTAB Emerges as Hero of USPTO Because Quality of Patents Improves, Software Patents Are Effectively Dead (or Dying Once Reassessed)

    With help from the Patent Trial and Appeal Board (PTAB) -- not just patent courts -- software patents drop like flies by the thousands



  13. Creative Technology, Now Operating in 'Patent Troll' Mode, Shot Down by the ITC; Jawbone Too Shot Down

    Some good news from the U.S. International Trade Commission (ITC), which may have put an end to Creative's new war on Android (using old patents)



  14. Corporate Media in India Misrepresents Startups to Push for Software Patents

    A parade of misinformation as seen in Indian (but English-speaking) press this week as questions about patentability of software resurface



  15. Links 25/8/2016: Linux Turns 25, NetworkManager Turns 1.4

    Links for the day



  16. Links 24/8/2016: More From LinuxCon, Uganda Wants FOSS

    Links for the day



  17. Links 23/8/2016: GNOME 3.22 Beta, Android 7.0 Nougat

    Links for the day



  18. The Linux Foundation Gives Microsoft (Paid-for) Keynote Position While Microsoft Extorts (With Patents) Lenovo and Motorola Over Linux Use

    This morning's reminder that Nadella is just another Ballmer (with a different face); Motorola and Lenovo surrender to Microsoft's patent demands and will soon put Microsoft spyware/malware on their Linux-powered products to avert costly legal battles



  19. Not Just President Battistelli: EPO Vice-Presidents Are Still Intentionally Misrepresenting EPO Staff

    Evidence serving to show that EPO Vice-Presidents are still intentionally misrepresenting EPO staff representatives and misleading everyone in order to defend Battistelli



  20. Battistelli the Liar Causes a Climate of Confrontation in French Politics, Lies About Patent Quality (Among Many Other Things)

    Battistelli's lies are coming under increased scrutiny inside and outside the European Patent Office (EPO), where patent quality has been abandoned in order to artificially elevate figures



  21. The Collapse of Software Patents and Patent Law Firms Trying to “Overcome” Alice

    The United States continues its gradual crackdown on software patents (which are viewed as abstract and thus unpatentable), whereas in Europe things are murkier than ever



  22. Apple's Patent Wars Against Android/Linux Make Patent Trolls Stronger

    Apple's insistence that designs should be patentable could prove to be collectively expensive, as patent trolls would then use a possible SCOTUS nod to launch litigation campaigns



  23. Links 22/8/2016: Linux 4.8 RC3, Linux Mint 18 “Sarah” KDE Beta

    Links for the day



  24. Links 21/8/2016: Apple and Microsoft Down, Systemd Spreading to Mount

    Links for the day



  25. Links 20/8/2016: Android Domination, FSFE summit 2016

    Links for the day



  26. Patents Roundup: Trolls Dominate Litigation, PTAB Crushes Patents, Patent Box Regime Persists, and OIN Explains Itself

    Another roundup of patent news from around the Web with special focus on software patenting



  27. The Cost/Toll of the 'New' EPO and Where All That Money Goes or Comes From

    The European Patent Office has become a servant of the rich and powerful (including large foreign corporations) and even its own employees now pay the price associated with misguided new policies (or 'reforms' as Battistelli habitually refers to these)



  28. Links 19/8/2016: Linux Mint With KDE, Linux Foundation's PNDA

    Links for the day



  29. The End of an Era at the USPTO as Battistelli-Like (EPO) Granting Policies Are Over

    The United States is seeing the potency of patents -- especially software patents (which make up much of the country's troll cases) -- challenged by courts and by the Patent Trial and Appeal Board (PTAB)



  30. Battistelli's European Patent Office Goes to the United States to Speak About the UPC and Software Patents

    The European Patent Office is showing its utter contempt -- not just disregard -- for the very fundamental rules that put it in its place and brought it into existence


CoPilotCo

RSS 64x64RSS Feed: subscribe to the RSS feed for regular updates

Home iconSite Wiki: You can improve this site by helping the extension of the site's content

Home iconSite Home: Background about the site and some key features in the front page

Chat iconIRC Channel: Come and chat with us in real time

CoPilotCo

Recent Posts