USA to equip military, government officials with Androids

Filed Under: Android, Apple, Google, iOS, Malware, Mobile

Army AndroidThe United States, which currently forbids government workers or soldiers to use smartphones to send classified messages, is preparing a modified version of Google's Android operating system that will meet its security certifications.

According to CNN, the army has been testing touchscreen devices at U.S. bases for almost two years. Forty phones were sent to soldiers overseas last year, and another 50 phones and 75 tablets are scheduled to ship to soldiers in March.

The military comes first, with federal agencies next in line to get phones for sending and receiving government cables while away from their offices, according to CNN's sources.

Using a bolted-down smartphone, soldiers could see their comrades on a digital map, or officials could securely send dispatches.

The security issues, of course, are rife. While pinpointing fellow infantrymen would be a boon, the military has to ensure that soldiers aren't simultaneously broadcasting their own GPS coordinates to enemy combatants. Weather apps, for example, automatically transmit a phone's GPS coordinates in order to deliver a local forecast.

Poisoned applications in smartphone application marketplaces are another worry.

While the massive Counterclank Android malware scare of last week turned out to be, most likely, just a bunch of pushy adware, Sophos is nonetheless tracking a sharp increase in malicious Android applications. There are now over 4000, which represents an increase of more than 400% since December 2011.

The modified version of Android will be authorised to store classified documents but will be incapable of transmitting them over a cellular network.

army smartphoneSmartphones cleared for top-secret dispatches - those the government seeks to keep out of the hands of hackers, rogue apps, foreign governments or sites such as WikiLeaks - are due out in the next few months.

Sources involved in the U.S. smartphone program told CNN that their goal is to support any type of smartphone. Though why Android over Apple in the first instance? Google freely allows developers to fiddle with its code, that's why.

CNN quoted Angelos Stavrou, an information-security director at George Mason University and a contractor working on the government project, who said that Apple refused to give the feds access to the core of its mobile operating system. Google was simply more cooperative, he said:

[Google] was more cooperative in supporting some of the capabilities that we wanted to support in the operating system, whereas Apple was more averse. They're shifting the strategy now.

Well, good luck with that shift. Apple's never had a cozy relationship with developers or security researchers, and its attempts to be more open, a la rivals Google and Microsoft, have been a tad ginger.

A recent example: In February 2011, Apple made a tentative step toward opening up. It offered a copy of the developer preview of Mac OS X 10.7, aka Lion, to security researchers and asked for their feedback - by invitation only, and only under a non-disclosure agreement regarding whatever researchers found.

That door wasn't ajar long. Nine months later, it slammed shut on Charlie Miller - aka "that Apple 0-day guy" - when the Accuvant Labs security researcher had the audacity to uncover a potentially dangerous bug he found in Apple’s iOS operating system that allowed unapproved code to be run on iPads and iPhones.

Miller packed a proof-of-concept bug into a fake stock ticker program for distribution in Apple's App Store.

apple logoApple didn't appreciate it. Instead of thanking him for pointing out a dangerous hole with a harmless demo, they ripped up Miller's license as an Apple developer.

Apple has always seemed like a tough business to partner with. Google, on the other hand, can prep an Android version that's compatible with the government's secure Android in a matter of two weeks, according to Stavrou.

The program certainly seems to be a thumbs-up to the open-source crowd. In fact, the National Security Agency has taken the unusual step of publishing online the source code for one version of the secure Android.

Here's how Stavrou classified the open-sourcing:

We had to go through many hoops for that to happen. By handing the source code out, other people will be able to take a look and tell us about bugs.

Here's hoping the secure Android will be a winning combination of bolting things down to avoid leaks and opening everything up to prevent bugs.


Android image courtesy of pocketnow.com.

, , , , ,

You might like

7 Responses to USA to equip military, government officials with Androids

  1. Rats. I though from the headline that I was going to get a clone of Star Trek's Mr. Data.

  2. T.Anne · 987 days ago

    Just trying to be sure I read this right - are you saying that from December 2011 to Feb 6, 2012 there has been an increase of 400% malicious Android applications? I'm really hoping I'm reading that wrong or it's a typo...

    "There are now over 4000, which represents an increase of more than 400% since December 2011. "

  3. garfey · 986 days ago

    Big mistake!

  4. NoSpin1600 · 986 days ago

    Has the military taken precautions against the phones falling into enemy hands, i.e. what if soldier is kia and enemy troops take phone? If this should happen enemy now has location of other troops.

    • Dest · 986 days ago

      I'm sure there's a lock on it with a wipe feature after x number of failed attempts.

  5. Christenson · 982 days ago

    It's not a wipe feature....it replaces the contents with what they want the enemy to see and runs all its calls through the intelligence department....which will be busy debating when to quit talking/texting so as not to warn of the impending drone strike.

    In WWII, there was nothing so valuable as the trust the enemy placed in their encryption system....here the valuable asset will be that the enemy thinks they have broken into our communications, when what they actually have is a digital double-agent in their midst that doesn't care if it dies and would love to take the enemy with it.

    Note: I don't work for the Guv'mint, and am not a contractor...but this is what I'd do, and I can't believe the security folks don't have some people who are very, very smart and can come up with even more devious ways to use "lost" spy cameras.

  6. Benjamin · 975 days ago

    Scary Android...

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

About the author

I've been writing about technology, careers, science and health since 1995. I rose to the lofty heights of Executive Editor for eWEEK, popped out with the 2008 crash, joined the freelancer economy, and am still writing for my beloved peeps at places like Sophos's Naked Security, CIO Mag, ComputerWorld, PC Mag, IT Expert Voice, Software Quality Connection, Time, and the US and British editions of HP's Input/Output. I respond to cash and spicy sites, so don't be shy.