Google-led App Defense Alliance Joins Linux Foundation (techcrunch.com) 17
The App Defense Alliance (ADA), an initiative set up by Google back in 2019 to combat malicious Android apps infiltrating the Play app store, has joined the Joint Development Foundation (JDF), a Linux Foundation project focused on helping organizations working on technical specifications, standards, and related efforts. From a report: The App Defense Alliance had, in fact, already expanded beyond its original Android malware detection roots, covering areas such as malware mitigation, mobile app security assessments (MASA), and cloud app security assessments (CASA). And while its founding members included mobile security firms such as ESET, Lookout and Zimperium, it has ushered in new members through the years including Trend Micro and McAfee. Today's news, effectively, sees ADA join an independent foundation, a move designed to open up the appeal to other big tech companies, such as Facebook parent Meta and Microsoft, both of which are now joining the ADA's steering committee. The ultimate goal is to "improve app security" through fostering greater "collaborative implementation of industry standards," according to a joint statement today.
Android vs Apple (Score:3)
Why can Apple manage to keep most shitty apps off their store but Google can't?
Re: Android vs Apple (Score:2)
Re: (Score:2)
I don't think google is responsible for side loaded crap or other stores. Their own store has a history of shitty apps problem they either don't care about or can't fix. Apple's store is reasonably safe. Google's should be, too.
If you download Nigerian crap ware that's on you, though.
Re: (Score:2)
I don't think google is responsible for side loaded crap or other stores.
With their software being loaded on a dozen(s) of hardware providers globally, there's an obvious answer for that; of course they're not, and that's by design.
Finger pointing is a helluva drug. Just ask the corrupt stock price.
Re: (Score:2)
Something about Franklin saying this?
"Those who would give up essential liberty to purchase a little temporary safety, deserve neither liberty nor safety."
I don't sideload but I do think that Google could work with the AV/Malware industry on a solution for the Play Store apps.
Re: Android vs Apple (Score:3)
Apple can't. Their store is full of shitty knockoff apps masquerading as some other app people want to use, and it has also delivered malware to users on numerous occasions. That rock is not keeping away the tigers, you're just telling yourself that it is in order to let you feel smart.
Re: (Score:2)
Then how come the news is filled with "yet another android app infected millions of users for the last 5 years with scum ware" and nothing like that for Apple?
Re: Android vs Apple (Score:2)
Learn to Google, Padawan. It's out there.
Hahahahaha Android capitalized Padawan ... Weebs
Re: (Score:2)
Sounds like a conspiracy to suppress anti-Apple news.
I'm definitely increasing my investments in tin foil.
Meta and Microsoft are now joining ! (Score:2)
Re: (Score:2, Interesting)
Meta and Microsoft are now joining ! How will this improve security ?
AFAIK, Microsoft is already a member of the Linux Foundation. But Google and the current corporate members have no interest in Linux or security. Their only goal is to completely take over Linux Development and eliminate all traces of the GPL or any other "Open" License.
Just look at what IBM/RedHat did, I look at that as a trial run. I am sure Microsoft is watching that change very closely with eyes on how to lock-down Linux with their Linux Foundation Partners.
Re: (Score:1)
Just look at what IBM/RedHat did, I look at that as a trial run. I am sure Microsoft is watching that change very closely with eyes on how to lock-down Linux with their Linux Foundation Partners.
There are two main points to what Red Hat did:
1. the GPL* only requires you to provide the source code if you acquire the product that is based on the source code
2. Red Hat can be picky about who its customers are
Thus what Red Hat did complies with the GPL (both 2 and 3). You have the right to the source code for the product you've acquired.
Point 2 is normality: I don't have to do business with you if I don't want to and just because I, at some point in the past, supplied you with a product based on GPLed
ADA? (Score:2)
Americans with Disabilities Act of 1990, American law.
ada.gov
Couldn't they pick another acronym for their stupid crusade?
Re: (Score:2)
Re: (Score:2)
Except that your example is a completely different field, i.e. it has nothing to do with computers or the internet.
Why not have levels of curation? (Score:2)
IMHO, I think the Google Play Store should have tiers of curation:
Tier 1 is where things are actively curated, like the Apple App Store, the Amazon App Store, and others. This would require an upcharge to developers, all updates would have to go through a vetting process, and it would require developers to abide by a stricter set of guidelines, things like not allowing code to be emulated [1] unless it is an emulator or other environment, no downloading and executing of modules, and other items to ensure t
The JDS provides the legal infrastructure !!! (Score:2)
“The Community Specification allows you to start a specification development effort as easily as an open source project. The Community Specification [github.com] incorporates the terms and processes required