- cross-posted to:
- [email protected]
- cross-posted to:
- [email protected]
SOURCE CODE DISCLOSURE:
BACKGROUND PERMISSION RESTRICTIONS:
- Apps cannot access cameras, microphones or location services in the background when phones are inactive. Continuous status bar notifications are required when these permissions are active.
PERMISSION REVIEW ALERTS:
- Devices must periodically display warnings prompting users to review all app permissions, with continuous notifications.
ONE-YEAR LOG RETENTION:
- Devices must store security audit logs, including app installations and login attempts, for 12 months.
PERIODIC MALWARE SCANNING:
OPTION TO REMOVE PRE-INSTALLED APPS:
INFORMING GOVERNMENT OF MAJOR UPDATES:
TAMPER-DETECTION WARNINGS:
- Devices must detect if phones have been rooted or “jailbroken”, where users bypass built-in security restrictions, and display continuous warning banners to recommend corrective measures.
ANTI-ROLLBACK PROTECTION:
- Phones must permanently block installation of older software versions, even if officially signed by the manufacturer, to prevent security downgrades.
You must log in or # to comment.
From the same government who brought you the mandated spyware app with access to all your phone?
ETA - there’s good stuff mixed in with bad here. Permission is good, but Losing control of the device (version restrictions) isn’t good and those audit logs are creepy.
Yeah, both the proposal and the tech firms “worry” seem to be double-edged swords.
Given that these same objecting companies have had tens of thousands of Indian developers, with source code access for iOS and Android, on their payrolls for decades now … I am not sure why they would suddenly be worried about this now.
