If you didn’t get a timely update on your Moto, Samsung or HTC device, but your friend over there with the Google Pixel did, it’s not necessarily the manufacturer’s fault. The complexity of Android, especially when it comes to security, is also a big part of the problem. In fact, Google revealed that around half of the 1.4 billion Android devices out there didn’t get important security patches in 2016. This year, however, it plans to work more closely with smartphone makers to improve that stat.
You have reason to be skeptical about such talk. The Android Update Alliance fizzled out for commercial and logistical reasons, and Google’s vow to name and shame slow vendors probably didn’t create a strong rapport. Unfortunately, mandatory security fixes caused by exploits and other issues are more and more frequent, and the consequences of not fixing them increasingly dire.
At the same time, there are hundreds of carriers and manufacturers that have their own ways of testing and deploying patches. So, while Google Nexus and Pixel buyers are getting the latest security fixes immediately, other Android users often wait for months.
Google adds that it’s easing manufacturer security rollouts by releasing so-called A/B updates that reduce the likelihood of a bricked phone after a patch. It’s also reducing the size of security fixes to ensure faster downloads, and letting consumers install them without the need to give permission every time.
At the same time, Google is giving manufacturers information about updates from their peers in the industry. “Everyone knew the update rate was low but they thought it was caused by someone else,” said Ludwig. “Providing the information allowed them to take action.”
Google has also reduced harmful apps by scanning the Play store more often — 750 million times in 2016 compared to 450 million in 2017, to be exact. That helped them drop the frequency of trojans by 51.5 percent, backdoors by 30.5 percent, phishing apps by 73.4 percent and hostile downloaders by 54.6 percent compared to 2015. The company also made numerous fixes for Nougat in the areas of Encryption, audio and video and enterprise — which is great, assuming you’ve already got it.