Android 4.4 has arrived - what’s new in security features of KitKat

13 November 2013

Google has recently released its 4.4 version of the popular Android OS, also called KitKat

Google has recently released its 4.4 version of the popular Android OS, also called KitKat. Between the improvements, some have noticed several security-related changes. Kaspersky Lab has analysed the new security features of Android 4.4 (KitKat).

“There is definitely some improvement with this new version, especially with regards to security. One of the biggest upgrades within Android 4.4 is that it will warn a user if a Certificate Authority (CA) is added to the device, making it easier to identify Man-in-the-Middle attacks inside a user’s network, explains Stefan Tanase, security expert at Kaspersky Lab. Google Certificate Pinning makes it harder for complicated attackers to intercept network traffic to and from Google services, by ensuring only whitelisted SSL certificates can connect to certain Google domains.”

Furthermore Android 4.4 is enforced by another barrier against exploits gaining rooting access. SELinux is now running in enforcing mode, instead of permissive mode. It makes buffer overflow exploits harder to implement.

From the point of view of malware threats, these enhancements do not really make a big difference. The most common Android infection source remains the same: unofficial apps downloaded from third-party stores. Thus the most important change from Android 2.3 is the lowered recourse usage. Users can look forward to Android 4.4 running on devices with just 512MB of RAM, which, for high end hardware means faster operation and much better battery life.

One of the biggest problems in the Android ecosystem is the amount of different versions of the OS, including ancient ones that are still running on users’ mobile devices. Tanase states that more than 25% of users are still running on Android 2.3*, which represents a big security issue. According to Kaspersky Lab experts, power users have always wanted to use the latest versions of Android on their devices - that's why phone rooting has become so popular.

For more information about security features of the new released Android 4.4, please visit Securelist.com.

About Kaspersky

Kaspersky is a global cybersecurity and digital privacy company founded in 1997. With over a billion devices protected to date from emerging cyberthreats and targeted attacks, Kaspersky’s deep threat intelligence and security expertise is constantly transforming into innovative solutions and services to protect individuals, businesses, critical infrastructure, and governments around the globe. The company’s comprehensive security portfolio includes leading digital life protection for personal devices, specialized security products and services for companies, as well as Cyber Immune solutions to fight sophisticated and evolving digital threats. We help millions of individuals and nearly 200,000 corporate clients protect what matters most to them. Learn more at www.kaspersky.com.

Android 4.4 has arrived - what’s new in security features of KitKat

Android 4.4 has arrived - what’s new in security features of KitKat

About Kaspersky

Related Articles Press Releases

Kaspersky’s award-winning Security Awareness now offered on-premises

Long story short: Kaspersky uncovers threats behind shortened URLs

Beware of deepfakes in the AI age, warns Kaspersky

Kaspersky assists INTERPOL in operation to disrupt cybercrime in African countries

Financial phishing cyberattacks significantly increase in Kenya and Nigeria in Q2 of 2022

#WorldTourismDay: Improving hotel cybersecurity essential to safeguard guest data

Kaspersky reports 53% decrease of attacks against remote desktop protocols for Africa in Q2 2022

Securing healthcare and patient data under the spotlight on World Patient Safety Day

Kaspersky shares a guide to top ransomware techniques as ransomware remains one of the major cyberthreats in META

Malware stealing credentials and credit card details targets gamers in South Africa and Kenya