Thread: Day 3 of Google #io19 is starting!

First talk: Security on Android: What's Next?

What? I want to yell, can I?

How to make you numbers good 🤦

Project Mainline is a good thing but also a good opportunity for us 😏

Sound cool

Added to my to-do list 😀

Humm app developers will be able to upgrade the signing key

I'm smelling something interesting here

The biometric prompt is now supporting an implicit confirmation

I don't want to live in a world where my apps is using a biometric auth

An Android phone can be a security key. This is a very good thing.

They created an Identity Credential API

This is not live yet

The firmware protections against insider attacks are very cool.

The session is finished. Except the first « marketing bullsh*t » slides, the presentation was good.

The Android team is doing a very good job to secure the firmware. The firmware insider protections is a direct answer to the latest supply chain attacks.

I’m quite worry about this identity credential API. In my opinion, it’s useless and I really don’t like the vision behind that.

I have the feeling that Google is restricting more and more what the app developers can do (ie the service limitations, how to launch an activity)

The weak point of Android is the app side and they know it. Still, this is a good improvement 😁 Now they add restrictions in the firmware to limit the app abuses.

So the Android app development env is going closer to the iOS app development env.

They have a big work to do on the app distribution. And this is my biggest question: Where are the “Google Play Protect” talks/team/announcements? Did I miss them?