Android 11 comes with lots of Security Changes and Privacy Improvements

Android 11 comes with lots of Security Changes and Privacy Improvements


The beta version of Android 11, the next version of Google's operating system for mobile devices, comes with lots of security and privacy changes that are designed to allow the operating system to protect users' data from malicious attacks. On the privacy side, the new Android 11 release will come with one-time permissions, automated permissions reset, and scope storage enforcement. When it comes to security updates, The beta version of Android 11 will immediately encrypt the user's data after over-the-air (OTA) updates without requiring user credentials input.

Dave Burke (Google Android Engineering VP) said that Every Android release has new privacy and security controls that let you decide how and when data on your device is shared. For the most sensitive permissions, Android 11 has even more granular controls. Android 11 is already available for development, testing, and feedback. Users with Google Pixel 2, 3, 3a, or 4 devices can try it right now.

Privacy improvements in Android 11

The beta version of Android 11 is designed to build upon earlier versions of Android, adding features and updates to keep users secure and increase transparency and control.

By using one-time permissions, Android 11 will allow users to grant apps temporary permissions to access the device's location, microphone, and camera for an instance.

Apps will once again notify their users by prompting an alert for giving them permission to access data related to location, microphone, or camera, when the users will next open these apps.

The new Android 11 will automatically reset sensitive permissions of apps that haven't been used by users for a few months. Apps that are expected to work in the background will be provided with the option to request users to disable auto-reset.

Android 11 comes with lots of Security Changes and Privacy Improvements

Google's Android 11 one-time permissions and auto-reset

Google also said that Android 11 discourages requests for permissions that users have chosen to deny. If the user repeatedly taps Deny for a specific permission during your apps lifetime of installation on a device, this action implies don't ask again.

In Android 11, whenever your app requests access to foreground location, the system permissions dialog includes an option called Only this time," Google said". This new option gives users more control over when an app can access location information.

Android 11 will also prevent apps from requesting access to background location information via system dialogs but, instead, will required apps to request background location separately via a dedicated settings page.

The next Android release also comes with scoped storage enforcement to better protect the app and user data on external storage, changes how applications to query and interact with other applications on the same device by following the principle of least privilege, and also changes how services running in foreground can access microphone and camera data.

For detailed information see below video about the privacy changes in the upcoming Android 11 release.



Security changes in Android 11

The user's data will be encrypted right after the device reboots following an OTA update, without requiring them to input their credentials.

Google said that after the device receives an OTA update and restarts, the Credential Encrypted keys that are placed in credential-protected storage are immediately available for File-Based Encryption (FBE) operations.

The applications can perform actions related to file-based encryption before the user enters their PIN, Pattern, or Password to unlock the device following the restart.

When the device is unlocked for the first time after it restarts or the users switch to their accounts, Android 11 will also block access to the user's app usage information. Unless the above two conditions are met neither the system nor any apps can access that data. This happens because Android device will store each user's application usage statistics in credential encrypted storage.

Android 11 of Google will also use SSL sockets based on Conscrypt's SSL engine by default and the Scudo Hardened Allocator to service heap allocations as a mitigation measure against some types of memory safety violations.

Does this article being helpful to you? Let us know your thoughts in the comments section and share it with us on Facebook, Twitter, or our LinkedIn Group.

0/Comments

Previous Post Next Post