Crikey! Open source Android might be just a wee bit too open with your data

Subject: General Tech | May 17, 2011 - 01:23 PM |
Tagged: Android, security, clientlogin, impersonation, fud

Researchers at Germany's University of Ulm have discovered a vulnerabliity in Android's authentication protocol, known as ClientLogin which should protect your login credentials to apps like your contact list and your calendar.  It seems that while your request is encrypted, the response which includes your credentials is sent back in plain text, and those credentials remain valid for 2 weeks.  The new versions of Android have fixed this flaw but according to the story at The Register connections to Picassa still return in plain text.

 

android-fud.jpg

"The vast majority of devices running Google's Android operating system are vulnerable to attacks that allow adversaries to steal the digital credentials used to access calendars, contacts, and other sensitive data stored on the search giant's servers, university researchers have warned."

Here is some more Tech News from around the web:

Tech Talk

Source: The Register

Google To Use Open Source Arduino Hardware For Android Open Accessory

Subject: Mobile | May 16, 2011 - 04:27 PM |
Tagged: open source, arduino, Android

During Google IO, Google announced for their Android cell phone operating system a new Open Accessory API. This API is currently supported on Android 2.3.4 and 3.1 (Honeycomb) for cell phones and tablets respectively. This Open Accessory API is a "complete solution" of hardware and software for an Android ADK (Android Accessory Development Kit). On the hardware side of things, Google's reference design uses an Arduino board as well as USB host circuitry from Circuits@Home. using the Google ADK or Open Accessory compatible boards from Microchip and RT Corporation compatible boards, developers are able to offer hardware accessories that are able to communicate over USB (and Bluetooth in the future) to software applications.

googleopenaccessoryapi.png

The interesting part about Open Accessory is that when first plugging an Android phone into an Open Accessory piece of hardware, the hardware is able to indicate to the phone what software applications it needs in order to interact with and be controlled by the phone.

According to Hugo Barra, “with the ADK, we are welcoming hardware developers into the Android community, and giving a path to building great Android accessories quickly and easily.” He emphasises that the openness of Android Open Accessory means that there are no NDAs, no licensing fees, and no approval process in building the hardware or accompanying software.

Along with the ADK comes Android@Home, which is a new open wireless protocol that will allow "every appliance in your home" to communicate with your android phone.

Google wants to ramp up the imaginations of developers, and encourage them to develop new methods of notification systems and more immersive game-play. Much as the popular Parrot AR.Drone has augmented reality gaming aspects, Google wants to encourage game developers to utilize Android@Home to make their games more immersive by using the environment. During the IO presentation, they demonstrated flickering lights while playing Quake which reacted to gunfire in the game.

By choosing to go open source for not only the software but the hardware behind the Android Open Accessory API, they will enable as many people with as many ideas as possible to have a chance to develop accessories for the Android platform. This freedom of imagination will encourage innovation, and in a competitive OS market, innovation is good for the consumer.

You can read more about the Arduino and how it may affect Apple's way of dealing with third party accessories over at Make.

Source: Make

Netflix Instant Streaming Now Available For Select Android Phones

Subject: General Tech, Mobile | May 13, 2011 - 12:05 PM |
Tagged: Netflix, Internet, Android

It has been a long time coming; however, Netflix Instant Streaming is finally coming to a select number of Android powered smart phones. Engadget has the scoop, stating that

“Netflix explains that while the app is currently limited to phones with ‘requisite playback support,’ it anticipates that many of the ‘technical challenges will be resolved in the coming months,’and that it will be able to ‘provide a Netflix application that will work on a large majority of Android phones.’”

The following phones will be able to use the streaming feature of the Netflix application: HTC Incredible, Nexus One, Evo 4G, G2, and Samsung Nexus S.

netflixstreaming.jpg

While Nitdroid users and owners of older Android phones are currently out of luck, this move by Netflix is a good sign that Netflix on the open source operating system is possible, and can work well.

If you own one of the supported Android phones, you can download the application from the Android Market today!

Source: Engadget

News from the honeycomb hideout, Google's I/O

Subject: General Tech | May 11, 2011 - 01:42 PM |
Tagged: youtube, sandwich, music, ice cream, honeycomb, google, cloud, Android

The fourth Google I/O took place over the past two days and AnandTech was there to bear witness on the keynote speech and other presentations.  As you might well expect Android was the most talked about, the new Honeycomb update was discussed in great detail and with good reason.  The update allows Android powered devices to use USB peripherals in the same way as a PC, powering mice, keyboards and even XBox controllers which is a big change from only being able to be used as a USB device and offers even more for those interested in the Open Accessory Library. 

Others will be more interested in Google's Music Beta which will let you upload your music collection to the web and includes the ability to make playlists and albums as well as gatherig meta artist information.  You can think of it like Amazon's Cloud service, though hopefully more reliable, but as Google seems not to have got the permission of the record companies it may not be.

fry2.jpg

"Google’s I/O 2011 keynote may have suffered from a few choice leaks, namely the new Music service and Ice Cream Sandwich announcement, but Google still managed to include some surprises. Android 3.1, the update to Honeycomb, was announced along with a slew of development platforms, including one committed to bringing better introduction of accessories to Android devices of all types, and a home integration platform based on Android."

Here is some more Tech News from around the web:

Tech Talk

Source: AnandTech
Author:
Subject: Mobile
Manufacturer: HTC

Introduction, Design and Ergonomics

thunderbolt1.jpg

Watching today’s smartphone market brings back memories. Right now the transition from single-core to dual-core products is being made, as is a transition from older 3G networks to the latest 4G technology. I’m reminded of the excitement of the first dual-core x86 processors, as well as the rabid arguments surrounding them. 

Many dual-core phone are still “coming soon”, however, which means that single-core flagships like the HTC Thunderbolt are still able to impress. This 4.3” smartphone is everything you’d expect a premier high-end Android handset to be. As I’ll explain, that has its positive and negatives, but the specifications look great on paper.

Android is number one in China ... at getting an infection

Subject: General Tech | April 15, 2011 - 11:56 AM |
Tagged: Virus, Malware, China, Android

"Android handsets used in China accounted for 64.1% of global virus/malware attacks in the first quarter of 2011, according to China-based mobile security solutions provider NetQin Mobile.

There were 2.53 million Android handsets infected by viruses or malware around the world during the first quarter, and most were in China due to the popularity of white-box Android handsets in the country, NetQin indicated. US ranked second with 7.6%, followed by Russia with 6.1%, India with 3.4%, Indonesia with 3.2%, Hong Kong with 2.7% and UK with 2.1%. In the first quarter, there were 1,014 new malware items and 101 new viruses, NetQin said.

Of the infected Android handsets globally, 57% were through downloading applications from Android Market, followed by using unbranded handsets with 17%, downloading applications from WAP or www. websites with 14%, using Bluetooth with 7% and using memory cards with 3%, it said.

A breakdown of the attacks by Android version shows that 1.6 and previous versions accounted for 5%, 2.1 34%, 2.2 45% and 2.3 16%."

InfectedAndroid.jpg

Here is some more Tech News from around the web:

Tech Talk

Source: DigiTimes