Android

From Wikispooks
Jump to: navigation, search
Concept.png Android 
(Operating system)Rdf-icon.png
Android.svg
A widely used mobile operating system

Android is a widely used mobile operating system developed by Google. It is a generally reliable[citation needed] open source OS, but as sold to consumers it almost invariably comes[citation needed] bundled with manufacturer malware to facilitate universal surveillance.

Pre-installed Malware

Although open source, Android is often sold pre-installed on mobile phones with dozens of pieces of proprietary malware, usually not able to be uninstalled and sometimes even invisible to end users. The proprietary Android cellphone, in this state, has been described as "the most sophisticated surveillance machine to date for monitoring your routines."[1] Even with a custom ROM, Google Play Services itself can act as spyware, tracking one's location [2], for example.

Rooting phones

Android is based on Linux, and is affected by a number of Linux bugs. In October 2016, 'Dirty Cow', a Linux privilege escalation bug was published online, which was "believed to work reliably on every version of the mobile operating system and a wide array of hardware."[3]

Avoiding malware

To avoid software-based malware on Android phones, one should use one that gives the user full control (i.e. are rootable) and allow reinstall of an alternative OS such as plain AOSP Android (such as Pixys OS[4], LineageOS or Resurrection Remix OS.

Software sources

Some Android apps abuse their privileges to sybvert the phone and serve adverts.[5] The most popular software repository is the Google Playstore.

F-Droid

Full article: Stub class article F-Droid

F-Droid, started in 2010, is the best established repository which contains only freely available open source apps.

Google Playstore

By July 2017 "at least 500 apps collectively downloaded more than 100 million times from Google's official Play Market contained a secret backdoor that allowed developers to install a range of spyware at any time".[6]

In March 2019 a joint investigation by researchers from Security Without Borders and Vice concluded that the Google Play Store had around 20 malware apps that had been undetected for 2 or so years.[7]

Alternatives

Another (closed source) alternative software repository is Aptoide, launched in 2009.

Drivers

Some phones use proprietary drivers, which being closed source, cannot be independently verified to be safe. Dealing with these requires either a phone with open drivers available or one writing open drivers themselves. Since reverse engineering hardware protocols can be an extremely challenging ordeal, one should usually avoid phones with proprietary drivers if they want maximum security.


 

Related Document

TitleTypePublication dateAuthor(s)Description
Document:Huawei’s phone business would be decimated without Google’s Android20 May 2019Vlad SavovA resolution to the ongoing trade dispute between the US and China is now more urgent than ever. However, China is unlikely to react positively to the bullying tactics of the US. And that means Huawei’s phone business may be in limbo for a while yet.


References