Good OP-ED.
Yet some will argue that timely updates aren't important.....usually those with brands that can't get them.
You're right. That or sometimes they'll lay blame on Google even though it's their OEM not taking action.
Blame Google for recommending being only behind by 90 days for the enterprise-level and not making monthly a requirement to use Play Services.
I wouldn't always blame the user because there are things that are unavoidable. Even the Play Store can be risky.Based on the reading I've done, I thought that the real problem was the individual user. Malware and viruses would access the phone via a download or clicking a weblink. Also, if Google Play has been activated, then it will scan the aps for viruses.
While I agree that the manufacturers need to do a better job with keeping their phones up-to-date, my impression was that the weakest link is the user with respect as to what is downloaded, and from where (i.e. outside the Google Play store).
Someone please educate me if I'm mis-informed.
I wouldn't always blame the user because there are things that are unavoidable. Even the Play Store can be risky.
How so? if Google hadn't even established that as a minimum, OEM's would be even further behind than 90 days. Still, the code is out and available upon release every month. OEM's just don't want to put their resources to support doing better.
Google phones yeah, but their software and play store policy need to be more strict with manufacturers
Why is that? Google releases the code on time and every month. It's there for every OEM to get. Now, the way I'm reading that is Google has done all it can do, it's up to the OEM to take some initiative and take care of their customers at that point.
Google isn’t mandating that all phones (with Play Services) require monthly support for security patches. That’s on Google. If an OEM didn’t want to do monthly, they don’t have to. They already have the customer’s money.
From Google, 90 days (essentially quarterly) is one of the requirements for “good enough for enterprise”.
If you want OEMs to change, speak with your wallet and lobby Google to make monthly required.
My point is that Google is not mandating any security updates. If monthly updates are high on your list, then buy a phone that offers that service. Personally, if Google says 90 days is what’s needed to be “enterprise-ready”, then 90 days is OK to me even if the patches are released monthly.
Why is that? Google releases the code on time and every month. It's there for every OEM to get. Now, the way I'm reading that is Google has done all it can do, it's up to the OEM to take some initiative and take care of their customers at that point.
Google is the software provider to android manufacturers, it sets rules how they can code them but not how to protect users and their data,privacy , they should be strict on manufacturers security patches . I blame both manufacturers and Google for this
If Essential can do it, why can't they all? I don't see how Google can be held responsible. They've done all the work and put the code out. IMO, OEM's are the ones at fault for not protecting their customers. The code is there, go get it!