Skip to main content
  1. Home
  2. Mobile
  3. News

Android security came a long way in 2016 but Google says there is more work

By

ransomware wannacry exploit attacking pc security padlock
Maksim Kabakou/Shutterstock.com
With hundreds of different Android devices out in the wild, running different versions of the operating system on different hardware, Google faces a massive challenge in distributing critical security updates. In the past, many users have had to wait up to three months before having their phones patched, not only due to the variation between Android products, but also the lack of urgency with which manufacturers pushed fixes out.

Google has been well aware of this problem, which is why it has made significant strides over the past several years, reducing that wait time to just a couple of days, according to TechCrunch. But there is still work to be done, as Adrian Ludwig and Mel Miller, members of Android’s Security Team, have noted in a year-in-review blog post.

Recommended Videos

More than 735 million devices from more than 200 manufacturers received security updates last year, according to Google. While that illustrates the company’s commitment to keeping users safe, the job is hardly complete. Ludwig and Miller also noted roughly half the Android products in use at the end of 2016 had not received an update in the preceding 12 months. Google claims its new A/B update system, designed to make over-the-air updates more reliable and prevent them from inadvertently bricking phones, will help encourage installation.

Related

The monthly security update initiative, set in motion after the Stagefright vulnerability was discovered in 2015, also saw expansion in 2016, the team reported. Those updates were released for devices running Android 4.4.4 and up, which comprises 86 percent of all active devices globally.

Ludwig and Miller also said they made strides in stamping out potentially harmful apps (PHAs) in the Google Play Store. Verify Apps, a system that checks users’ devices for PHAs, conducted 750 million daily tests last year, up from 450 million in 2015. As a result, installation of PHAs was reportedly reduced in the top 50 countries in which Android devices are used. Google estimated PHAs accounted for 0.05 percent of all apps on the Play Store last year, compared to 0.15 percent in the year prior.

Of course, Google Play isn’t the only place where users can get their apps, and that is one of the roadblocks Google encountered trying to make Android safer for everyone. The number of devices with a PHA installed — from any source, not just Google’s marketplace — actually rose to 0.71 percent from 0.5 percent.

Although many Android users have chosen Pixel and Nexus devices to receive updates straight from Google automatically, the security team attributed much of its progress to enhancements offered by the release of Android 7.0 Nougat. Chiefly, the introduction of file-based encryption and protections against media-based attacks have bolstered security in the most recent Android phones, regardless of manufacturer.

Still, as much as the Android Security Team has accomplished alongside partners and carriers, it still helps to have friends in the research community. Google said its Vulnerability Rewards Program paid out nearly $1 million to researchers in 2016 for their contributions — some of which were set to rave music.

Editors’ Recommendations

Topics
Adam Ismail
Adam Ismail
Former Digital Trends Contributor
Adam’s obsession with tech began at a young age, with a Sega Dreamcast – and he’s been hooked ever since. Previously…
Google Chrome is getting the Android tablet update you’ve been waiting for
Google Chrome app on s8 screen.

Google today announced the release of its redesign for the Chrome app on Android tablets. After long being neglected on the big screen, especially in comparison to Apple's or Samsung's browsers, Google says it'll be rebuilding the browser to help you get work done faster with a tablet or other large-screened device.

These updates can be broken down into design and functionality improvements, and we'll be kicking things off with the redesign. The first change adds a new side-by-side design when using Chrome paired with another app. This comes with an auto-scroll back feature so you can swipe between tabs, hiding the close buttons when your tabs are too small to prevent mis-taps — plus the inclusion of a restore feature.

Read more
Google wants to kill your passwords on Android and Chrome with passkeys
Google passkeys on Android

Google is building out passkey support into Android, though you won't be able to use it yet without some tinkering. The search giant shared that it would be making the password-killing feature available for testing today for users on Google Play Services Beta or Chrome Canary, with general availability coming later in the year. Aside from Android and Chrome devices, passkeys also became available earlier with Safari on iOS 16 and macOS Ventura.

Passkeys are essentially intended to be a replacement for passwords. Rather than having to maintain an alphanumeric pattern for a particular site, however, they'll be using the device you most likely have in your hand. By leveraging fingerprint or facial recognition support, or even pins, any operating system that supports passkeys will use your device to create a private key that interfaces with a service's public key. Both keys combined will be your passkey. You can use passkeys alongside passwords, or in lieu of them. They'll be stored on your device's password manager, including Google's own Password Manager and iCloud's KeyChain.

Read more
The Google Pixel Tablet is a bad idea that might just work
Someone holding a Google Pixel Tablet.

Google is bringing a strange new addition to its Pixel line of products next year: an Android tablet. Though the company has been building up to a Pixel Watch for years with back-to-back acquisitions, the Pixel Tablet seemingly came out of nowhere when it was initially teased at Google I/O in May. And during Google's hardware event for the Pixel 7, we got an even better glimpse at it.

Although the Android tablet niche is one that's struggled for a while, Google is taking an interesting approach with the Pixel Tablet. In addition to functioning as a "normal" tablet, Google is also positioning the Pixel Tablet as a dashboard for its ecosystem of smart home appliances. Google’s recent history with large-screen devices is nothing short of a mess, leading me to believe the Pixel Tablet is destined for failure. But it's also a bad idea that just might work.
A quick primer on Google Pixel tablets and computers

Read more