this post was submitted on 25 Sep 2024
93 points (97.9% liked)

Pulse of Truth

473 readers
76 users here now

Cyber Security news and links to cyber security stories that could make you go hmmm. The content is exactly as it is consumed through RSS feeds and wont be edited (except for the occasional encoding errors).

This community is automagically fed by an instance of Dittybopper.

founded 1 year ago
MODERATORS
 

Google has revealed that its transition to memory-safe languages such as Rust as part of its secure-by-design approach has led to the percentage of memory-safe vulnerabilities discovered in Android dropping from 76% to 24% over a period of six years. The tech giant said focusing on Safe Coding for new features not only reduces the overall security risk of a codebase, but also makes the switch

top 5 comments
sorted by: hot top controversial new old
[–] henfredemars@infosec.pub 7 points 1 month ago (1 children)

Counter point: how has code churn varied across those years? My understanding is that changes in Android are becoming more incremental which might mean that less code is being written over time, too.

[–] veroxii@aussie.zone 6 points 1 month ago

Yeah. Just about any code base will mature tremendously over 6 years.

[–] bamfic@lemmy.world 1 points 1 month ago* (last edited 1 month ago) (2 children)

Wair what, havent done a android dev in 10 years but back then it was JVM only, java or kotlin or similar. Does android support rust now?

[–] allan@lemmy.world 1 points 1 month ago

It's for the native stuff, in the os, I assume, not for third party development

[–] lengau@midwest.social 1 points 1 month ago

Android has had a native development kit since 2009.