Thursday, June 17, 2010

Android and Trust

One legitimate concern that users/security folks have about Android is around the trustworthiness of applications in the Android Market.

Given that Google doesn't censor applications in the Market, how can a user be comfortable that an app she is downloading isn't malicious. Particularly given that the granularity of permissions still leaves something to be desired.

I wonder if it makes sense for Google to offer/contract out the job of testing 3rd party applications for security/privacy issues. Developers can pay for this testing. In return, they get a "seal of approval", which allows lay users to download and run them comfortably.

Anybody has opinions on this?