The first public showing of Android prototypes at last week's MWC generated a lot of interest although the comments weren't all positive. Android was faulted for looking like just every other mobile operating system and for lacking the elegant ground breaking user interface of an iPhone. One commenter was disappointed by the lack of any sign of an integrated advertising platform or any other ground breaking APIs.
These criticisms are somewhat valid but I think they miss Android's real significance. Android will be as much of a game changer as the iPhone but for different reasons. Google is creating the first developer and user friendly mobile application platform.
Before the iPhone and Android, the real customers for devices and mobile OSes where the mobile carriers. Nokia, Microsoft, Sun, Symbian, RIM and Palm depend on the carriers to sell their products. The carriers want to maximize revenue by being the exclusive source of applications and services to their captive audience of customers.
Symbian, Windows Mobile, Palm, Blackberry were all built with a security model based on code signing certificates. Certificates authenticate the creator of a program and that it hasn't been modified. With mobile applications they are also used to provide a standard way to create branded handsets where the most desirable API's like network, location, messaging and phonebook access are restricted to applications signed with a carrier provided certificate.
Want to use Shozu to send photos to Flickr or IM with Jabber using your unlimited data plan? With most T-Mobile USA or Sprint branded phones you can't do that. ATT's handsets at least let the applications run but subject users to a barrage of "Allow program to send and receive data?" messages that can't be turned off. The situation is somewhat better outside the US but even unlocked, unbranded phones are affected by the application signing model. My Nokia N95 requires native applications to be signed although for most types of access, including file system and networking, developers can self-sign their applications for free. Location and the phonebook are off limits to self-signed applications, however. Running unsigned network-aware Java ME programs on the N95 produces prompts to allow access every time the app is run. It's not possible to grant permanent permission.
Imagine if developers of PC applications were required to obtain a costly Microsoft or Apple certification before their applications could save files or connect to the network. Had that sort of restriction had been in effect 30 years ago most of us would still be using typewriters. The current signed security model in mobile along with the high price and unpredictability of metered data plans have had a huge negative effect on innovation in mobile services and applications.
Android will destroy the signed security model in mobile. Based on everything I've read and heard, Android will not use certificates. Instead, applications will have to declare their intention to use sensitive API's like location and messaging at install. The user will be prompted to allow or disallow each type of access while installing. That means that anyone can develop for Android without asking for permission from a carrier or device manufacturer. Users will control their security and will be able to install any application with fine grained control over
Pages: 1 2 3
posted by Dennis Bournique
February 22, 2008 @ 8:05 am
7 View Comments
