"Add to all of this Google's own admission that more than 90 percent of Android users are running older versions of the mobile operating system that contain serious kernel vulnerabilities. That gives attackers an easy way to bypass Android's security sandbox that's supposed to limit the data and resources each app is allowed to access.
Then remember that Google makes no promises to vet the security of apps hosted in its own store, and it's easy to see why users have good reason to be wary of the platform."
我覺得google既然都知道舊版系統有安全漏洞了,就應該時常提醒這些90%使用android舊版系統的用戶更新系統,一封簡單的mail我想不會很困難吧...
另外market上傳軟體的部分,應該設立個嚴格的軟體審核制度,或是增加線上的掃毒功能,在用戶下載前就告訴他們這套軟體通過那些防毒軟體的掃瞄,是否有被植入病毒等。
其實現在很多論壇的下載點都有這種機制,儘管不知道是否真的有掃描過,至少也比較安心
沒有留言:
張貼留言