Surprisingly, just a few days after the Google I / O developer event, a new version of the Moutain View operating system has been launched. That is Android 4.4.4 It is official and some models of the Nexus range are already beginning to receive the corresponding firmware.
The truth is that this is a minor update, so it should not be expected to offer a large number of new features. Actually, what is included in Android 4.4.4 are more solutions to detected problems than anything else, so it comes to be confirmed what in [sitename] we already indicated: that version 4.4.3 was not fully polished and had been found bugs by some users.
The fact is that the new Android version, KTU84P, is for now compatible with the following models: Nexus 4, 5, 7 and 10. It is even possible to download the factory image so the installation can be done manually if so it is desired. This is link where is the Firmware repository and, simply, you must select the specific one of the Google terminal you have. Obviously, it is to be expected that some manufacturers, such as Motorola, will proceed to launch their own updates quickly.
Important things in Android 4.4.4
For special After solving various usage problems that had been detected, which is already important - especially those related to the connectivity section - there is one detail that stands out above the rest: the to maximise security and your enjoyment.. It has been indicated here that the new version of the operating system has an important correction regarding a hole found in OpenSSL (CVE-2014-0224), which has been confirmed in the Google+ profile from one of Google's own engineers: Sascha Pruter.
In addition to correcting vulnerabilities, system components are hardened: SELinux goes into mode enforcing, imposing strict access policies that limit the escalation of privileges and block unauthorized behavior even if an app tries to bypass permissions.
On secure connections, Android strengthens the TLS layer. The system Notify if a new CA is added to the device and apply Google Certificate Pinning so that only whitelisted certificates work with Google domains, mitigating attacks Man-in-the-middle.
At the compilation level, system libraries are built with FORTIFY_SOURCE=2, a protection that detects patterns of buffer overflow at runtime and reduces the attack surface against memory exploits.
El AndroidKeyStore expands support to ECDSA keys, offering efficient cryptographic alternatives to RSA. For developers, this means more options signing and authentication, without penalizing performance on devices with limited resources.
All these changes make more difficult root access unauthorized. Although advanced users will notice this, the positive effect is clear: the malware It is also more complicated. Even so, the main route of infection remains the installation of apps from unofficial sources, so it is best to avoid third-party stores.
As for deployment, the OTA is already distributed for Nexus and it is possible flash the factory image manually. Optimizing KitKat to work with 512 MB of RAM favors that more devices can benefit from these improvements, although the fragmentation The ecosystem and dependence on manufacturers continue to influence update times.
The arrival of Android 4.4.4 demonstrates that the previous version was missing some details to be polished and that, although Google has reacted quickly—especially regarding security—it would have been ideal if the previous update did not include the detected errors. And, all of this, waiting that him Google I/O a new version of your operating system may be released.
Thanks to a hardened core, TLS improvements, and compilation with additional protections, Android 4.4.4 cements its position as a key update For those who prioritize security, it's a good idea to update as soon as possible if your device is compatible.