Pentagon nod shows Android can be as secure as BlackBerry

Samsung's Knox system for Android devices gets approval for use in government and military

By giving the OK for the U.S. government and military to use Android devices with Samsung's security platform, the Pentagon has confirmed that Google's operating system can be locked down as well as the BlackBerry OS, once considered the gold standard in mobile security.

Samsung announced Friday that the Department of Defense (DoD) had approved the use of Knox-enabled Android smartphones and tablets. Currently, that would include only the Galaxy S4, but Samsung has said more devices would ship with the platform in the near future.

The DoD nod places the S4 on par with the BlackBerry Q10 and Z10 smartphones and Playbook tablets running the Pentagon-approved BlackBerry 10 operating system. Apple is expected to get similar approval this month for iPhones and iPads running iOS 6.

Samsung, which is making a big push in the enterprise market with Knox-enabled S4s, can now say that Android devices can be made as secure as their rivals.

"The OS can certainly be locked down with technology and there is no way to indicate Android is less secure than others, including iOS and BlackBerry," said Xuxian Jiang, a mobile security researcher at North Carolina State University. "The recent approval of S4 for Pentagon and government use is clearly a positive sign."

A key Knox feature borrowed from the BlackBerry lets IT administrators place work and personal information in separate containers on the same device. Called "partitions," the feature encrypts business apps and data in a secured bin, which is all that admins can access. This allows people to wipe their device clean of corporate data when they leave a company, while holding on to their personal information.

Security with Android devices in general has been a problem not because of the operating system itself, but because of the ecosystem around it. Most mobile malware is written for the platform, because the malicious code can be hidden in apps and distributed through any website. Google Play, the official Android app store for consumers, is considered reasonably safe by most experts.

Last year, nearly all of the more than 35,000 instances of mobile malware stemmed from devices running Android, according to IDC. Apple has avoided the same malware problems by requiring that all apps for the iPhone and iPad be vetted by the company and distributed only through its App Store.

Google recently changed itsmPlay Developer Program Policiesto say, "an app downloaded from Google Play may not modify, replace or update its own APK binary code using any method other than Google Play's update mechanism."

The move makes it much more difficult to turn a benign app into a malicious one once it leaves Google Play. When apps could be updated through a third-party server, unscrupulous developers could install malware or have the upgrade gather more personal data than the previous version.

[In depth: Avoiding basic BYOD blunders]

Samsung worked with the National Security Agency (NSA) in developing Knox, which the company hopes will attract corporate customers despite apprehension over Android security. Projections show there is a market. IDC predicts that a third of the 737 million Android smartphones shipped in 2016 will be used in business. Android today accounts for about 70% of the smartphone market.

Because of Android's market clout, Samsung is not expected to be alone in making Android enterprise ready. HTC, Motorola and LG have established business units with the same goal.

While Knox looks good on paper, the real test of the platform will come once it is in use by government and corporate customers. "I'm sure attackers will see what they can do with this new system knowing that there are government assets running it, so time will tell how secure it is," said John Grady, an analyst with IDC.

In the meantime, other companies are building additional security on top of Knox, so Samsung devices can be used in classified networks. General Dynamics has built a hardened version of Android that uses the company's root certificates instead of Samsung's. General Dynamics plans to make its technology available for use on any Android smartphone.

Read more about wireless/mobile security in CSOonline's Wireless/Mobile Security section.

Join the newsletter!

Or

Sign up to gain exclusive access to email subscriptions, event invitations, competitions, giveaways, and much more.

Membership is free, and your security and privacy remain protected. View our privacy policy before signing up.

Error: Please check your email address.

Tags Blackberrymobile securityGoogleApplesoftwaredata protectionapplicationssamsungData Protection | WirelessKnox

Keep up with the latest tech news, reviews and previews by subscribing to the Good Gear Guide newsletter.

Antone Gonsalves

CSO (US)
Show Comments

Cool Tech

Toys for Boys

Family Friendly

Stocking Stuffer

SmartLens - Clip on Phone Camera Lens Set of 3

Learn more >

Christmas Gift Guide

Click for more ›

Brand Post

Most Popular Reviews

Latest Articles

Resources

PCW Evaluation Team

Aysha Strobbe

Microsoft Office 365/HP Spectre x360

Microsoft Office continues to make a student’s life that little bit easier by offering reliable, easy to use, time-saving functionality, while continuing to develop new features that further enhance what is already a formidable collection of applications

Michael Hargreaves

Microsoft Office 365/Dell XPS 15 2-in-1

I’d recommend a Dell XPS 15 2-in-1 and the new Windows 10 to anyone who needs to get serious work done (before you kick back on your couch with your favourite Netflix show.)

Maryellen Rose George

Brother PT-P750W

It’s useful for office tasks as well as pragmatic labelling of equipment and storage – just don’t get too excited and label everything in sight!

Cathy Giles

Brother MFC-L8900CDW

The Brother MFC-L8900CDW is an absolute stand out. I struggle to fault it.

Luke Hill

MSI GT75 TITAN

I need power and lots of it. As a Front End Web developer anything less just won’t cut it which is why the MSI GT75 is an outstanding laptop for me. It’s a sleek and futuristic looking, high quality, beast that has a touch of sci-fi flare about it.

Emily Tyson

MSI GE63 Raider

If you’re looking to invest in your next work horse laptop for work or home use, you can’t go wrong with the MSI GE63.

Featured Content

Product Launch Showcase

Don’t have an account? Sign up here

Don't have an account? Sign up now

Forgot password?