In regards to security, Apple does have three upsides, and only those:
No sideloading and no unlocked bootloader means you can’t sideload malware or install malware-preloaded ROMs. No root also means you can’t just install malware that uses root access.
Long OS support means fewer people run around with iPhones that are 5 OS versions behind.
There’s no tiny boutique iPhone manufacturers who sell phones that come pre-loaded with malware.
The solution for the first one is “don’t sideload untrusted stuff” and the solution to the second and third one is “buy an Android phone from a trusted manufacturer that has long term OS support”.
No sideloading and no unlocked bootloader means you can’t sideload malware or install malware-preloaded ROMs
It’s a simple configuration change to disable it and can be done with any corporate MDM system, making this a moot point. Not to mention too many people don’t understand security, so Android is taking away sideloading anyway, FoR sEcUriTY
No root also means you can’t just install malware that uses root access
The vast majority of Android phones do not come with root access. For both, you generally have to elevate access yourself
Long OS support means fewer people run around with iPhones that are 5 OS versions behind
If you’re running an out-of-date OS, clearly security is not a priority
There’s no tiny boutique iPhone manufacturers who sell phones that come pre-loaded with malware
Supply chain attacks absolutely can happen to iPhones as well. There are plenty of re-sellers
You missed the actual security benefit over iOS that Android cannot compete with: Apple controls the entire software chain from security patch to OTA update. This allows them to patch and release a fix for critical vulnerabilities far faster than any Android device possibly could. Apple does not need to get the approval of an OEM (such as Samsung), and, due to special deals, they do not need to get the approval of a carrier (like Verizon). Android devices typically need to get approvals from both before releasing updates (although Google flagship phones can bypass one, and can fast track the other)
The downside there is there are no checks on Apple. They could release a horribly vulnerable patch with no additional checks in-between
You don’t seem to get my point and seem to think that I’m some apple fanboy that you need to convince or win against.
I use android, I’ve never used iOS. I enjoy the freedom of sideloading. Still it is a fact that the overwhelming majority of malware infections on Android happen due to side loading. The percentage of devices running corporate MDM is tiny, making this a moot point.
The vast majority of Android phones do not come with root access. For both, you generally have to elevate access yourself
And yet quite a few devices in the wild run rooted or custom ROMs.
If you’re running an out-of-date OS, clearly security is not a priority
You seem to forget what this thread is about. It’s not about personal security and whether one can run a safe android device, but about an app developer not providing an Android version, because the platform as a whole (meaning the average user) is less secure.
Personal preferences like paying for a new, non-outdated phone don’t really matter for that big picture view.
Supply chain attacks absolutely can happen to iPhones as well. There are plenty of re-sellers
That’s a strange argument. Getting malware that survives a factory reset onto an iPhone without apple’s approval is close to impossible. Making an Android phone from scratch that contains malware right in the system image has been done over and over again. You are argueing a hypothetical versus something that happens every day.
Long os support meant to intentionally brick your iphone so you buy new. That is 100% true as I had many apple products started degrading after upgrade and still have old models that are not upgraded and work perfectly
I’m not defending apple here. Short OS support (or none at all) is not a good thing, and it’s something that’s sadly still quite common if you buy the wrong Android brand.
Samsung is doing pretty well in that regard right now.
Sorry, didn’t think I had to clarify it. Long support is good IF has good intentions behind it. Most long supported os has bad intentions behind it as making old models inferior and unusable as in case with ios on iphone 5. For example in my opinion windows xp was THE best windows, maybe on par with seven.
So if you give me two options, first is updating my phone so it becomes laggy and unusable or keep current version, I will choose to stay on old OS.
Most long supported os has bad intentions behind it as making old models inferior and unusable as in case with ios on iphone 5.
Your evidence is an iPhone that came out 13 years ago last month? Back in those days, the year over year improvements in the hardware were immense, and the software tried to take advantage of it. But people would complain, A Lot, if those features didn’t come to their older device. Do you remember how much folks lost their mind when the iPhone 4 came out and iOS 4 allowed it and the 3GS to have a home screen wallpaper, but not the iPhone 3G? People were pissed and called it “planned obsolescence” that it didn’t get the feature. So, when the iPhone 4 hit iOS 7, they included all the animations. And then people called it planned obsolescence that it stuttered.
It really depends on what your goal is. Usability, keeping a familiar interface, performance, all of that are things that make it reasonable to stay on an outdated OS, and none of these reasons are bad.
Security (which is the only thing we are really talking about here) does require updates.
If security is your most important concern, you need to update. If security is not your biggest concern and other topics are more important for you, it might be reasonable to stay on older versions.
But in the context of this post, which was purely about security, having long term security updates is important.
In regards to security, Apple does have three upsides, and only those:
The solution for the first one is “don’t sideload untrusted stuff” and the solution to the second and third one is “buy an Android phone from a trusted manufacturer that has long term OS support”.
It’s a simple configuration change to disable it and can be done with any corporate MDM system, making this a moot point. Not to mention too many people don’t understand security, so Android is taking away sideloading anyway, FoR sEcUriTY
The vast majority of Android phones do not come with root access. For both, you generally have to elevate access yourself
If you’re running an out-of-date OS, clearly security is not a priority
Supply chain attacks absolutely can happen to iPhones as well. There are plenty of re-sellers
You missed the actual security benefit over iOS that Android cannot compete with: Apple controls the entire software chain from security patch to OTA update. This allows them to patch and release a fix for critical vulnerabilities far faster than any Android device possibly could. Apple does not need to get the approval of an OEM (such as Samsung), and, due to special deals, they do not need to get the approval of a carrier (like Verizon). Android devices typically need to get approvals from both before releasing updates (although Google flagship phones can bypass one, and can fast track the other)
The downside there is there are no checks on Apple. They could release a horribly vulnerable patch with no additional checks in-between
You don’t seem to get my point and seem to think that I’m some apple fanboy that you need to convince or win against.
I use android, I’ve never used iOS. I enjoy the freedom of sideloading. Still it is a fact that the overwhelming majority of malware infections on Android happen due to side loading. The percentage of devices running corporate MDM is tiny, making this a moot point.
And yet quite a few devices in the wild run rooted or custom ROMs.
You seem to forget what this thread is about. It’s not about personal security and whether one can run a safe android device, but about an app developer not providing an Android version, because the platform as a whole (meaning the average user) is less secure.
Personal preferences like paying for a new, non-outdated phone don’t really matter for that big picture view.
That’s a strange argument. Getting malware that survives a factory reset onto an iPhone without apple’s approval is close to impossible. Making an Android phone from scratch that contains malware right in the system image has been done over and over again. You are argueing a hypothetical versus something that happens every day.
Long os support meant to intentionally brick your iphone so you buy new. That is 100% true as I had many apple products started degrading after upgrade and still have old models that are not upgraded and work perfectly
I’m not defending apple here. Short OS support (or none at all) is not a good thing, and it’s something that’s sadly still quite common if you buy the wrong Android brand.
Samsung is doing pretty well in that regard right now.
Sorry, didn’t think I had to clarify it. Long support is good IF has good intentions behind it. Most long supported os has bad intentions behind it as making old models inferior and unusable as in case with ios on iphone 5. For example in my opinion windows xp was THE best windows, maybe on par with seven. So if you give me two options, first is updating my phone so it becomes laggy and unusable or keep current version, I will choose to stay on old OS.
Your evidence is an iPhone that came out 13 years ago last month? Back in those days, the year over year improvements in the hardware were immense, and the software tried to take advantage of it. But people would complain, A Lot, if those features didn’t come to their older device. Do you remember how much folks lost their mind when the iPhone 4 came out and iOS 4 allowed it and the 3GS to have a home screen wallpaper, but not the iPhone 3G? People were pissed and called it “planned obsolescence” that it didn’t get the feature. So, when the iPhone 4 hit iOS 7, they included all the animations. And then people called it planned obsolescence that it stuttered.
It really depends on what your goal is. Usability, keeping a familiar interface, performance, all of that are things that make it reasonable to stay on an outdated OS, and none of these reasons are bad.
Security (which is the only thing we are really talking about here) does require updates.
If security is your most important concern, you need to update. If security is not your biggest concern and other topics are more important for you, it might be reasonable to stay on older versions.
But in the context of this post, which was purely about security, having long term security updates is important.
In other words do not confuse long support with good support as these are totally different things