Tuesday, July 17, 2012
Posted by Craig Horlacher in "Android News" @ 11:30 AM
"In an analysis published Monday, security researcher Jon Oberheide said Android version 4.1, aka Jelly Bean, is the first version of the Google-developed OS to properly implement a protection known as address space layout randomization."
Diagram showing attacker overwriting a return address with a pointer to the stack that contains attacker-supplied dataWikipedia
It's great to know that Google is taking mobile security seriously and working to improve it. This sounds like a large step in the right direction. I was also surprised this was the first I had heard of this change being in Android 4.1, Jelly Bean. Another feature new in Jelly Bean I heard of recently is a "Safe Mode" to make sure a problem you're having is not app related.
What's your favorite new feature in Jelly Bean?