Language Selection

English French German Italian Portuguese Spanish

Secret Back Doors in Android

Filed under
Just talk

I am everything but a Google basher and I spent a lot of my life descending deep into research of Google foes, Google smear campaigns, lawsuits by proxy, and antitrust actions by proxy. I also advocate Android, but in recent years I have been increasingly concerned about the direction it is taking. I wish to share my latest concern. It relates to what the media characterises as "anti-theft" but is actually a facility to kill phones in a protest or convert them into hostile listening devices. Technology impacts human rights and those who control technology can be tempted to control humans.

Google habitually updates my tablet. It is a Nexus 7 tablet which Google invites itself to update remotely (shame on me for not installing Replicant, but this device does not support it yet). It is not a 3G tablet and it does not have two operation systems (unlike mobile phones) or even a carrier tracking its location all the time. It's a purely Android device with no network tying. It is network-agnostic. I only bought it because in order to replace my PDA (for over a decade) I wanted a device that is not a tracking device. Phones were out of the question.

Networks don't track the tablet. Google, however, is always out there, fully able to identify the connected user (latched onto a Gmail address because of Play), modifying the software without even the user's consent (the user is sometimes prompted to boot, without being able to opt out of the core update itself).

The update in itself is not a problem. What's problematic is its effect.

Following the latest Google update (which I was given no option to reject) I noticed that Google had added a remote kill switch as an opition. It was enabed by default. "Allow remote lock and erase" is what Google calls it and it is essentially working like a back door. Google and its partners in government are gaining a lot of power not over a smartphone but over a tablet.

The significance of this is that not only phones should be assumed to be remotely accessible for modification, including for example additional back doors. What's more, some devices that were sold without this functionality silently have it added. According to the corporate press, the FBI remotely turns Android devices into listening devices and it is getting simpler to see how.

NSA and PRISM destroy our computing. We definitely need to demand Free software, but we should go further by asking for audits, rejecting user-hostile 'features' like DRM, 'secure' boot, and kill switches. I gradually lose any remaining trust that I had in Google and even Free software such as Android.

More in Tux Machines

​Red Hat buys into Docker containers with Atomic Host

Not much over a year ago, few people knew about containers, and fewer still knew about Docker. Since then, the idea of building server and applications out of container-based micro-servers, has exploded in popularity. Red Hat has been watching this and now with Red Hat Enterprise Linux 7 Atomic Host (RHELAH) the company has its own operating system/container pairing to offer the business world. Read more

VMware heads to court over GPL violations

The Software Freedom Conservancy alleges that VMware is using GPL-licensed code in its proprietary products Read more

5 awesome security features to expect in PC-BSD 10.1.2

Five of those security and security-related features were announced today and are on track to be included in the next edition, which should be PC-BSD 10.1.2. They are PersonaCrypt – a command line utility to backup a user’s home directory to an encrypted external media Tor Mode in System Updater Tray Stealth Mode in PersonaCrypt Ports now use LibreSSL by default instead of OpenSSL Support for encrypted backups in Life-Preserver utility Read more

COM Express module runs Linux on a 2.3GHz Tegra K1

Seco is prepping a Linux-friendly COM Express Type 6 Compact module with a quad-core, 2.3GHz Tegra K1 SoC and optional extended temperature support. When we covered the Nvidia Jetson TK1 single board computer last March, we didn’t realize the manufacturer was Seco. In addition to the Jetson TK1 (Seco product page here), Seco is now adding a COM Express Type 6 Compact computer-on-module called the SECOMExp-TK1, which similarly runs Linux on an Nvidia Tegra K1 SoC. Read more