Google's attack on the fragmentation of Android security with contractual obligation

Google requires that smartphone manufacturers using Android as the operating system keep their phones up-to-date with the latest patches. This is indicated by The Verge Technology website on the basis of confidential documents.

Google would explicitly require manufacturers to update their new devices for at least two years with patches released monthly for Android. This contractual obligation would apply to all popular smartphones and tablets.

Every month, a Google security team releases a new set of Android patches. Google's contract with Android Partners now states that they must provide "at least four security updates" in the year following the launch of the phone. Security updates are also required during the second year, but without a minimum number of publications

Security for each device from 2019

According to confidential documents, the terms apply to any device launched after January 31, 2018 and activated. by more than 100,000 users. As of July 31, these requirements have been applied to 75% of the models of a manufacturer requiring security updates. Effective January 31, 2019, Google requires all device security devices to receive these updates.

Manufacturers must identify defects identified by Google within a certain time. At the end of each month, the devices in question must be protected from all vulnerabilities identified more than 90 days ago. This means that, even without a minimum annual minimum, manufacturers are forced to patch their devices regularly. If manufacturers do not keep their devices up-to-date, Google threatens to deny its approval for Android as the operating system for future phones.

Conditions are reflected in Google's new licensing agreement for Android phones. and tablets to distribute in the European Union. Information on this subject has recently been published. This shows that Google will ask for money to use Android licensed. This can go up to 40 EUR for countries such as the Netherlands.

Android Fragmented Security Issue

Fragmented security has long been a problem for Android, with phone manufacturers sometimes ignoring product updates as they age or decline. Recent versions of Android have made it easier to see the date of a recent update of a phone. In Android Oreo, the system has been restructured so that general operating system updates can be created more easily and quickly.