This site may earn chapter commissions from the links on this folio. Terms of use.

smiling android

Most Android phones get updates, but they don't get very many of them. This has been an issue even for very expensive and pop phones, which quickly end upwards with old security patches that can't protect you from every online threat. Google is reportedly rolling out a new Android licensing agreement to OEMs that will require security updates for two years on certain devices.

The new contract, obtained by The Verge, says that Android device makers will have to deploy at least four security patches for new phones in the offset year they are on the market. They will need to continue supporting devices in the yr following with patches, but Google does not specify how many.

These new rules only apply for phones launched afterwards January 31, 2019. In addition, this is meant to target "popular" devices. Google deems phone or tablet with at least 100,000 activations to be popular enough to warrant a loftier level of support. Google apparently started enforcing this on a limited footing over the summertime. In Baronial, 75 percentage of each device maker's popular phones were subject to the new rules. Next yr, all of them will be.

Companies can't only roll out whatever old security patch and call it a day, either. The patches need to cover all the flaws reported every bit of the patch date noted in the system software, and the patch level cannot be more 90 days in the past. For the first year, that basically guarantees quarterly updates. Fifty-fifty without a required number of updates in a device's second twelvemonth, users should still get reasonably new security fixes.

You can always check the security patch level of a phone in the system settings, a characteristic implemented by Google after the Stagefright vulnerability several years ago. On many devices, the patch date is as well a link to the official Android patch notes so you lot can see which vulnerabilities information technology covers.

This is all dissever from system updates, which are withal sluggish even after the deployment of Project Treble in Android Oreo. It takes more time and resources to develop a new underlying version of Android for a phone than it does to patch security holes. Google has provided some guidelines on arrangement updates but zippo as strict every bit these supposed security guidelines. While getting the newest features is fun, a more than secure phone is arguably much more than vital.

Now read: App Developers Can Stalk You Around the Spider web if You Uninstall Their App, Google Apps License Could Cost European Phone Makers $xl Per Device, and Google Pixel 3 Xl OLED Scores Tape High Marks in DisplayMate Testing