Pentagon nod shows Android can be as secure as BlackBerry

Samsung's Knox system for Android devices gets approval for use in government and military

By giving the OK for the U.S. government and military to use Android devices with Samsung's security platform, the Pentagon has confirmed that Google's operating system can be locked down as well as the BlackBerry OS, once considered the gold standard in mobile security.

Samsung announced Friday that the Department of Defense (DoD) had approved the use of Knox-enabled Android smartphones and tablets. Currently, that would include only the Galaxy S4, but Samsung has said more devices would ship with the platform in the near future.

The DoD nod places the S4 on par with the BlackBerry Q10 and Z10 smartphones and Playbook tablets running the Pentagon-approved BlackBerry 10 operating system. Apple is expected to get similar approval this month for iPhones and iPads running iOS 6.

Samsung, which is making a big push in the enterprise market with Knox-enabled S4s, can now say that Android devices can be made as secure as their rivals.

"The OS can certainly be locked down with technology and there is no way to indicate Android is less secure than others, including iOS and BlackBerry," said Xuxian Jiang, a mobile security researcher at North Carolina State University. "The recent approval of S4 for Pentagon and government use is clearly a positive sign."

A key Knox feature borrowed from the BlackBerry lets IT administrators place work and personal information in separate containers on the same device. Called "partitions," the feature encrypts business apps and data in a secured bin, which is all that admins can access. This allows people to wipe their device clean of corporate data when they leave a company, while holding on to their personal information.

Security with Android devices in general has been a problem not because of the operating system itself, but because of the ecosystem around it. Most mobile malware is written for the platform, because the malicious code can be hidden in apps and distributed through any website. Google Play, the official Android app store for consumers, is considered reasonably safe by most experts.

Last year, nearly all of the more than 35,000 instances of mobile malware stemmed from devices running Android, according to IDC. Apple has avoided the same malware problems by requiring that all apps for the iPhone and iPad be vetted by the company and distributed only through its App Store.

Google recently changed itsmPlay Developer Program Policiesto say, "an app downloaded from Google Play may not modify, replace or update its own APK binary code using any method other than Google Play's update mechanism."

The move makes it much more difficult to turn a benign app into a malicious one once it leaves Google Play. When apps could be updated through a third-party server, unscrupulous developers could install malware or have the upgrade gather more personal data than the previous version.

[In depth: Avoiding basic BYOD blunders]

Samsung worked with the National Security Agency (NSA) in developing Knox, which the company hopes will attract corporate customers despite apprehension over Android security. Projections show there is a market. IDC predicts that a third of the 737 million Android smartphones shipped in 2016 will be used in business. Android today accounts for about 70% of the smartphone market.

Because of Android's market clout, Samsung is not expected to be alone in making Android enterprise ready. HTC, Motorola and LG have established business units with the same goal.

While Knox looks good on paper, the real test of the platform will come once it is in use by government and corporate customers. "I'm sure attackers will see what they can do with this new system knowing that there are government assets running it, so time will tell how secure it is," said John Grady, an analyst with IDC.

In the meantime, other companies are building additional security on top of Knox, so Samsung devices can be used in classified networks. General Dynamics has built a hardened version of Android that uses the company's root certificates instead of Samsung's. General Dynamics plans to make its technology available for use on any Android smartphone.

Read more about wireless/mobile security in CSOonline's Wireless/Mobile Security section.

Join the newsletter!

Error: Please check your email address.
Rocket to Success - Your 10 Tips for Smarter ERP System Selection

Tags applicationsmobile securitypentagonsoftwareData Protection | Wirelessdata protectionKnoxBlackberryApplesamsungGooglesecurity

Keep up with the latest tech news, reviews and previews by subscribing to the Good Gear Guide newsletter.

Antone Gonsalves

CSO (US)
Show Comments

Cool Tech

SanDisk MicroSDXC™ for Nintendo® Switch™

Learn more >

Breitling Superocean Heritage Chronographe 44

Learn more >

Toys for Boys

Family Friendly

Panasonic 4K UHD Blu-Ray Player and Full HD Recorder with Netflix - UBT1GL-K

Learn more >

Stocking Stuffer

Razer DeathAdder Expert Ergonomic Gaming Mouse

Learn more >

Christmas Gift Guide

Click for more ›

Most Popular Reviews

Latest Articles

Resources

PCW Evaluation Team

Walid Mikhael

Brother QL-820NWB Professional Label Printer

It’s easy to set up, it’s compact and quiet when printing and to top if off, the print quality is excellent. This is hands down the best printer I’ve used for printing labels.

Ben Ramsden

Sharp PN-40TC1 Huddle Board

Brainstorming, innovation, problem solving, and negotiation have all become much more productive and valuable if people can easily collaborate in real time with minimal friction.

Sarah Ieroianni

Brother QL-820NWB Professional Label Printer

The print quality also does not disappoint, it’s clear, bold, doesn’t smudge and the text is perfectly sized.

Ratchada Dunn

Sharp PN-40TC1 Huddle Board

The Huddle Board’s built in program; Sharp Touch Viewing software allows us to easily manipulate and edit our documents (jpegs and PDFs) all at the same time on the dashboard.

George Khoury

Sharp PN-40TC1 Huddle Board

The biggest perks for me would be that it comes with easy to use and comprehensive programs that make the collaboration process a whole lot more intuitive and organic

David Coyle

Brother PocketJet PJ-773 A4 Portable Thermal Printer

I rate the printer as a 5 out of 5 stars as it has been able to fit seamlessly into my busy and mobile lifestyle.

Featured Content

Latest Jobs

Don’t have an account? Sign up here

Don't have an account? Sign up now

Forgot password?