Slashdot is powered by your submissions, so send in your scoop

 


Forgot your password?
Close
typodupeerror
×
Android Security IT

Google-led App Defense Alliance Joins Linux Foundation (techcrunch.com) 17

Posted by msmash from the moving-forward dept.
The App Defense Alliance (ADA), an initiative set up by Google back in 2019 to combat malicious Android apps infiltrating the Play app store, has joined the Joint Development Foundation (JDF), a Linux Foundation project focused on helping organizations working on technical specifications, standards, and related efforts. From a report: The App Defense Alliance had, in fact, already expanded beyond its original Android malware detection roots, covering areas such as malware mitigation, mobile app security assessments (MASA), and cloud app security assessments (CASA). And while its founding members included mobile security firms such as ESET, Lookout and Zimperium, it has ushered in new members through the years including Trend Micro and McAfee. Today's news, effectively, sees ADA join an independent foundation, a move designed to open up the appeal to other big tech companies, such as Facebook parent Meta and Microsoft, both of which are now joining the ADA's steering committee. The ultimate goal is to "improve app security" through fostering greater "collaborative implementation of industry standards," according to a joint statement today.
This discussion has been archived. No new comments can be posted.

Google-led App Defense Alliance Joins Linux Foundation More

Google-led App Defense Alliance Joins Linux Foundation

Comments Filter:

  • Android vs Apple (Score:3)

    by iAmWaySmarterThanYou ( 10095012 ) on Wednesday November 08, 2023 @12:02PM (#63990033)

    Why can Apple manage to keep most shitty apps off their store but Google can't?

    • Probably because iCustomers are more content. One hardware provider. One App Store. And no overzealous crowd bitching about freedom or democracy because they canâ(TM)t side-load the latest financial management app/rave flashlight from Nigeria.

      • I don't think google is responsible for side loaded crap or other stores. Their own store has a history of shitty apps problem they either don't care about or can't fix. Apple's store is reasonably safe. Google's should be, too.

        If you download Nigerian crap ware that's on you, though.

        • I don't think google is responsible for side loaded crap or other stores.

          With their software being loaded on a dozen(s) of hardware providers globally, there's an obvious answer for that; of course they're not, and that's by design.

          Finger pointing is a helluva drug. Just ask the corrupt stock price.

      • Something about Franklin saying this?

        "Those who would give up essential liberty to purchase a little temporary safety, deserve neither liberty nor safety."

        I don't sideload but I do think that Google could work with the AV/Malware industry on a solution for the Play Store apps.

    • Apple can't. Their store is full of shitty knockoff apps masquerading as some other app people want to use, and it has also delivered malware to users on numerous occasions. That rock is not keeping away the tigers, you're just telling yourself that it is in order to let you feel smart.

  • Meta and Microsoft are now joining ! How will this improve security ?

    • Re: (Score:2, Interesting)

      by jmccue ( 834797 )

      Meta and Microsoft are now joining ! How will this improve security ?

      AFAIK, Microsoft is already a member of the Linux Foundation. But Google and the current corporate members have no interest in Linux or security. Their only goal is to completely take over Linux Development and eliminate all traces of the GPL or any other "Open" License.

      Just look at what IBM/RedHat did, I look at that as a trial run. I am sure Microsoft is watching that change very closely with eyes on how to lock-down Linux with their Linux Foundation Partners.

      • Just look at what IBM/RedHat did, I look at that as a trial run. I am sure Microsoft is watching that change very closely with eyes on how to lock-down Linux with their Linux Foundation Partners.

        There are two main points to what Red Hat did:

        1. the GPL* only requires you to provide the source code if you acquire the product that is based on the source code
        2. Red Hat can be picky about who its customers are

        Thus what Red Hat did complies with the GPL (both 2 and 3). You have the right to the source code for the product you've acquired.

        Point 2 is normality: I don't have to do business with you if I don't want to and just because I, at some point in the past, supplied you with a product based on GPLed

  • Americans with Disabilities Act of 1990, American law.
    ada.gov

    Couldn't they pick another acronym for their stupid crusade?

  • IMHO, I think the Google Play Store should have tiers of curation:

    Tier 1 is where things are actively curated, like the Apple App Store, the Amazon App Store, and others. This would require an upcharge to developers, all updates would have to go through a vetting process, and it would require developers to abide by a stricter set of guidelines, things like not allowing code to be emulated [1] unless it is an emulator or other environment, no downloading and executing of modules, and other items to ensure t

  • “The Joint Development Foundation provides the legal infrastructure to establish and run projects.The Joint Development Foundation [jointdevelopment.org] can also provide or facilitate providing services including bank accounts, project management service, secretariat, etc. These services would be provided for a fee.”

    “The Community Specification allows you to start a specification development effort as easily as an open source project. The Community Specification [github.com] incorporates the terms and processes required

Slashdot Top Deals

Make sure your code does nothing gracefully.

Close