The Adoption of Memory-Safe Code Has Increased Android’s Security

Published:

spot_img

Memory Safety Improvements in Android: A Secure-By-Design Approach pays off

The number of memory-related vulnerabilities in Android has seen a significant decrease over the past five years, thanks to Google’s adoption of a secure-by-design approach that prioritizes memory-safe languages like Rust for new code.

According to a recent blog post by researchers from Google’s Android and security teams, memory safety issues such as buffer overflows and use-after-free bugs now only make up 24% of all Android vulnerabilities, compared to 76% in 2019. The total number of Android memory-related vulnerabilities for 2024 is projected to be 36, which is half the number from last year and a vast improvement from the 223 flaws reported in 2019.

The transition to memory-safe languages like Rust has been instrumental in reducing memory-related bugs in Android. While traditional programming languages like C and C++ allow for direct memory manipulation, leading to potential errors, memory-safe languages feature automatic memory management and built-in safety checks. This shift has been gradual, with Google introducing Rust support in Android 12 and increasing the use of the language in subsequent versions.

Google’s approach involves using memory-safe languages for new features while making bug fixes to existing code written in memory-unsafe languages. The company aims to gradually transition to memory-safe languages over time, recognizing the importance of improving memory safety to enhance overall security. With a decline in memory-related vulnerabilities, Google’s secure-by-design approach seems to be paying off, setting a positive trend for the future of Android security.

spot_img

Related articles

Recent articles

Valu Launches Egypt’s First Instant Cashback Loyalty Program, Transforming Everyday Spending Rewards

Valu Launches Egypt’s First Instant Cashback Loyalty Program, Transforming Everyday Spending Rewards Cairo: Valu, a prominent financial technology firm in the Middle East and North...

Laser Attack Resets Tangem Wallet Passwords, Exposing Unpatchable Security Flaw

Laser Attack Resets Tangem Wallet Passwords, Exposing Unpatchable Security Flaw Researchers from Ledger's Donjon security team have uncovered a significant vulnerability in Tangem crypto wallet...

US Authorities Indict Lawrence Bishnoi and Goldy Brar, Elevating Criminal Network to Tier-1 Transnational Syndicate

US Authorities Indict Lawrence Bishnoi and Goldy Brar, Elevating Criminal Network to Tier-1 Transnational Syndicate In a significant escalation of international crime enforcement, the United...

CHERY Strengthens Family Mobility in Saudi Arabia with Q4 Launch of Super Intelligent Valet Parking Technology

CHERY Strengthens Family Mobility in Saudi Arabia with Q4 Launch of Super Intelligent Valet Parking Technology As CHERY prepares to make its re-entry into the...