What is Android Security Patch Date and Why It is Important
Most people are aware of terms like Android 4, 5, 6, 7, 8 and 9, or terms like Jelly bean, Lollipop, KitKat, Marshmallow, Nougat, Oreo and Pie. Most will also understand the Android operating system is newer and better for higher version of Android. However some people may not be aware that Google also provides security updates to the Android operating systems via security patches. The purpose of these updates is to fix vulnerabilities or flaws of the Android operating system.
 |
| Android Security Patch Date |
It is possible to tell when was the last security update applied to your device (see our tool in Zero Permission App). And using the information provided Google Security Bulletin, you will know the technical details of possible vulnerabilities in your device. Your device may not be patched against the most recent security exploits if the security patch date is too long ago. If there are security patches provided (by device manufacturer or by your carrier), your device will almost certainly be configured to automatically download and apply the patches. There is nothing much you can do if there is no security patch provided by your device manufacturer or your telco carrier.
For older Android devices, or devices that are not patched recently, you need to be aware that the device may be vulnerable. By taking these measures, you can significantly reduce the opportunities of attack.
1. Enable the Pin lock, Pattern lock or fingerprint lock on the device
2. Disable developer option and disable ADB debug and disable installation of apps from "Unknown Sources"
3. Do not sideload application
4. Never open documents or application installers (APK files) that you are not expecting, even if it looks like it's from someone you know
5. Ensure your phone is regularly backed up, or sync your contacts/data/etc with one of the major companies such as Google, Samsung
6. Make sure Google Play Store is updated and Play Protect is turned on
7. Make sure all applications in your device are updated.
8. Regularly download the well known Anti-virus applications and perform a full scan
9. If your device is more than two years old, consider replacing the device.
If you are shopping for a new device, you may want to look for a manufacturer that provides timely security patches. You may want to take a look at Android One program. Launched in 2014, Android One is a series of devices that run the unmodified Android operating system. It defines hardware and software standards to provide a consistent user experience and improved security through frequent updates and Google Play Protect. Android One phones will receive the latest version of Android from Google’s hardware partners. However, Google’s partners may not be able to send out these updates in a timely manner. All partners are expected to provide software updates for at least eighteen months after the phone’s initial launch. This means that all phones will receive at least one major software update and several smaller security updates in their supported lifetime. We checked a Xiaomi A2 model phone in a shop in early October and the security patch date is September 2018, and that is impressive. (Note: we are not affiliated to Xiaomi in any direct or indirect ways)
After you get a new device, you may want to harden your device as per this previous post.
No comments:
Post a Comment