{"id":17566,"date":"2020-10-07T19:52:04","date_gmt":"2020-10-07T17:52:04","guid":{"rendered":"https:\/\/eiposgrados.com\/?p=17566"},"modified":"2020-10-13T12:09:31","modified_gmt":"2020-10-13T10:09:31","slug":"google-is-committed-to-security-on-all-android-phones-thanks-to-apvi","status":"publish","type":"post","link":"https:\/\/eiposgrados.com\/eng\/blog-ciberseguridad\/google-apuesta-por-la-seguridad-en-todos-los-moviles-android-gracias-a-apvi\/","title":{"rendered":"Google is committed to security on all Android phones thanks to APVI"},"content":{"rendered":"<p>The company that knows everything, <span style=\"color: #3366ff;\">g<\/span><span style=\"color: #ff0000;\">either<\/span><span style=\"color: #ffff00;\"><span style=\"color: #ffcc00;\">either<\/span><span style=\"color: #3366ff;\">g<\/span><\/span><span style=\"color: #339966;\">l<\/span><span style=\"color: #ff0000;\">and<\/span>, just announced the creation of an initiative to improve the security of non-Pixel Android devices. Android Partner Vulnerability Initiative or APVI will allow users to be warned about system vulnerabilities, adding an extra layer of security.<\/p>\n<p>\u201cThe APVI covers problems discovered by <span style=\"color: #3366ff;\">g<\/span><span style=\"color: #ff0000;\">either<\/span><span style=\"color: #ffff00;\"><span style=\"color: #ffcc00;\">either<\/span><span style=\"color: #3366ff;\">g<\/span><\/span><span style=\"color: #339966;\">l<\/span><span style=\"color: #ff0000;\">and <\/span>that could affect the security posture of an Android device or its users and is aligned with ISO\/IEC 29147:2018 Information technology \u2013 Security techniques \u2013 Vulnerability disclosure recommendations,\u201d Google said, according to the XDA Developers portal.<\/p>\n<p>The problem I had <span style=\"color: #3366ff;\">g<\/span><span style=\"color: #ff0000;\">either<\/span><span style=\"color: #ffff00;\"><span style=\"color: #ffcc00;\">either<\/span><span style=\"color: #3366ff;\">g<\/span><\/span><span style=\"color: #339966;\">l<\/span><span style=\"color: #ff0000;\">and <\/span>was that it had no standard way of reporting safety issues which applied to some manufacturers, but not all. Now, thanks to the APVI, what it does is identify security flaws that are specific to Android devices manufactured by third parties and compiles the vulnerabilities located by Google in the <strong>layers or applications from different manufacturers.<\/strong><\/p>\n<p>Specifically, what Google will do with the APVI is notify all manufacturers or developers of the error or vulnerability that they have located, giving them time to solve it or, in such case, make the failure public to the user community.<\/p>\n<p>In this way, once the manufacturer or developer is aware of the error or vulnerability, they will have no choice but to release security patches or updates more frequently since, otherwise, they would risk Google making the bug public with the consequent and possible monetary losses in sales and bad press (I still remember the note that exploded).<\/p>\n<p><a href=\"https:\/\/bugs.chromium.org\/p\/apvi\/issues\/list?q=&amp;can=1\" target=\"_blank\" rel=\"noopener\"><img fetchpriority=\"high\" decoding=\"async\" class=\"aligncenter wp-image-17571\" src=\"https:\/\/eiposgrados.com\/wp-content\/uploads\/2020\/10\/Listado-de-fallos-APVI-1024x516.jpg\" alt=\"\" width=\"325\" height=\"164\" title=\"\"><\/a><\/p>\n<p><span style=\"color: #3366ff;\">g<\/span><span style=\"color: #ff0000;\">either<\/span><span style=\"color: #ffff00;\"><span style=\"color: #ffcc00;\">either<\/span><span style=\"color: #3366ff;\">g<\/span><\/span><span style=\"color: #339966;\">l<\/span><span style=\"color: #ff0000;\">and <\/span>will publish the <strong>vulnerabilities<\/strong> that you discover by listing them on the <a href=\"https:\/\/bugs.chromium.org\/p\/apvi\/issues\/list?q=&amp;can=1\" target=\"_blank\" rel=\"noopener\">APVI<\/a>, while <strong>weaknesses that apply to AOSP<\/strong> <strong>(<em>Android Open Source Project)<\/em><\/strong>\u00a0will continue to be published in <a href=\"https:\/\/source.android.com\/security\/bulletin\" target=\"_blank\" rel=\"noopener\">Android security bulletins<\/a>.<\/p>\n<p>To date, the giant Google has reported on problems detected in devices from Oppo, Vivo, ZTE or Huawei, among others, although most have already been corrected.<\/p>\n<p>We can see the publication of <span style=\"color: #3366ff;\">g<\/span><span style=\"color: #ff0000;\">either<\/span><span style=\"color: #ffff00;\"><span style=\"color: #ffcc00;\">either<\/span><span style=\"color: #3366ff;\">g<\/span><\/span><span style=\"color: #339966;\">l<\/span><span style=\"color: #ff0000;\">and <\/span>about the initiative <a href=\"https:\/\/security.googleblog.com\/2020\/10\/announcing-launch-of-android-partner.html\" target=\"_blank\" rel=\"noopener\">here<\/a>.<\/p>","protected":false},"excerpt":{"rendered":"<p>Google has just announced the creation of an initiative to improve the security of non-Pixel Android devices.<\/p>","protected":false},"author":51,"featured_media":17568,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"inline_featured_image":false,"footnotes":""},"categories":[332],"tags":[],"class_list":["post-17566","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-blog-ciberseguridad"],"acf":[],"_links":{"self":[{"href":"https:\/\/eiposgrados.com\/eng\/wp-json\/wp\/v2\/posts\/17566","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/eiposgrados.com\/eng\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/eiposgrados.com\/eng\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/eiposgrados.com\/eng\/wp-json\/wp\/v2\/users\/51"}],"replies":[{"embeddable":true,"href":"https:\/\/eiposgrados.com\/eng\/wp-json\/wp\/v2\/comments?post=17566"}],"version-history":[{"count":0,"href":"https:\/\/eiposgrados.com\/eng\/wp-json\/wp\/v2\/posts\/17566\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/eiposgrados.com\/eng\/wp-json\/wp\/v2\/media\/17568"}],"wp:attachment":[{"href":"https:\/\/eiposgrados.com\/eng\/wp-json\/wp\/v2\/media?parent=17566"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/eiposgrados.com\/eng\/wp-json\/wp\/v2\/categories?post=17566"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/eiposgrados.com\/eng\/wp-json\/wp\/v2\/tags?post=17566"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}