Analysis of threats using directory Android Market

Company Google has officially released release of transportable platform Android 2.2 and published all the related source code.

From features of the new version it is possible to mark implementation considerably increasing productivity of applications of the JIT-compiler, upgrade of the built in web-browser, addition of possibility of a choice of type of the carrier for installation of programs (a SD-map or built in Flash), improvement of multimedia of functions, transition on Linux a kernel 2.6.32, possibility addition on data exchange through Bluetooth, support of operation of phone in the form of the modem and other possibilities.

Firmware Android 2.2 is accessible since yesterday through automatic resources of upgrade to phones Nexus One based on platform Android 2.1. Possibility of free usage Android 2.2 also is accessible now to the original equipment manufacturers preparing for release new models of phones or planning to prepare upgrade for already released devices. Of particular interest is the statistics of the explosive growth in popularity of the platform, if a month ago the average daily users become active approximately 100 thousand new phones, but now this figure had risen to 160,000.

Also added to the Android 2.2 users improvements behind the scenes is a few significant changes in the process of developing the platform. The source code of Android 2.2 undergone restructuring, division into modules, and a more strict separation associated with the closed platform and free software. The Source code have undergone to cleaning, especially in respect of removal of inadvertent dependence of some parts of system from the closed components. The assemblage system also has undergone to processing, all are integrated into the main code base necessary for assemblage by own forces configuration files. The undertaken improvements considerably simplify process of creation own completely free assemblages Android and adapting of a program platform for new hardware devices. Henceforth any enthusiast, having loaded source texts from a site and having started some commands, can gather Android for the emulator or one of base target devices (Dream/ADP1, Sapphire/ADP2 and Passion/Nexus One).

Judging by the data resulted in the announcement, by preparation Android 2.2 in code base of the project some hundreds the changes prepared by indirect developers not linked to company Google were accepted. Except individual enthusiasts to development it was connected more than twenty companies. The total number registered on a server of reviewing of a code of developers has exceeded a mark in 4 thousand participants, thus on the average from each developer is received on two patches.

Company Google was not in debt and has opened a little linked to support of hardware of libraries, before extended only in the closed sort (for example, the code of support of multimedia of possibilities of chip sets Qualcomm is opened). Also company Google has accelerated process of check of sent patches if before confirmation it was necessary to wait some weeks now such check occupies no more than several days. According to the company from all sent changes of 80 % have been accepted in the main repository of the project and then have entered into official release. Google also stresses that all associated with the development of tools such as Eclipse-Plugin for application development, the emulator platform and other parts of the SDK, designed not behind closed doors, and in full accordance with the principles of open source software that allows application software developers to participate in improving the tools for its creation.

In summary, it would be desirable to mention some the unpleasant moments. Continuing a subject of possible appearance in directory Android Market of the Trojan applications routed on performance of selfish or malicious action, company SMobile Systems has carried out the analysis more than 48 thousand programs presented in the directory. Results have appeared unfavorable.

At installation of new programs, at usage in the application of the expanded possibilities, such as realization of calls, access to the personal information of the user, performance of network operations or sending SMS, the installer demands from the user to confirm validity of installation of such application. Many users of phones on the basis of Android noticed time and again that very often programs demand for the performance of the functions not peculiar to their assignment. For example, the program for forced perfect termination of tasks, can demand inclusion for it functions of sending SMS and call to external network resources. Often such behavior is quite documented, for example, network access is necessary for the organization of show of advertising.

According to SMobile Systems 20 % from all presented in Android Market demand programs for the operation of opening of access to personal or to by default closed data. In 5 % from all programs presented in the directory inclusion of possibility of initiation of phone calls on any number without involvement of the user is required, 2 % of percent of programs request possibility of automated sending SMS. How much such necessity is justified in the resulted statistics not mentioned, on the one hand on handle of an address book access to the personal information is quite comprehensible to the program, but on the other hand, the application requests often such data without direct necessity.

Company Google has reacted to the presented information the message in which affirms that practice of hard removal from directory Android Market of all programs breaking regulations of tools or suspected of performance of unscrupulous operations will be henceforth entered. Moreover, it is informed that in need of Google can resort to already developed technology of remote blocking of the applications installed on phones of end users if such applications contain malicious features. Separately, emphasizes that the removal would not occur in silence, after removing the user a warning notice.

The first remotely erased programs were two friendly application, specially introduced by third-party security researchers in the Android Market to analyze the possible spread of malicious software through the channels of delivery of programs on the phone. As the developers of these programs on their own initiative have removed them from the directory, but the program violated the rules and Android Market does not sell initially claimed features, Google has decided to initiate the removal of these programs from phone users.

This entry was posted on Friday, July 2nd, 2010 at 6:58 am and is filed under Google News. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.