SOURCE CODE DISCLOSURE:
BACKGROUND PERMISSION RESTRICTIONS:
- Apps cannot access cameras, microphones or location services in the background when phones are inactive. Continuous status bar notifications are required when these permissions are active.
PERMISSION REVIEW ALERTS:
- Devices must periodically display warnings prompting users to review all app permissions, with continuous notifications.
ONE-YEAR LOG RETENTION:
- Devices must store security audit logs, including app installations and login attempts, for 12 months.
PERIODIC MALWARE SCANNING:
OPTION TO REMOVE PRE-INSTALLED APPS:
INFORMING GOVERNMENT OF MAJOR UPDATES:
TAMPER-DETECTION WARNINGS:
- Devices must detect if phones have been rooted or “jailbroken”, where users bypass built-in security restrictions, and display continuous warning banners to recommend corrective measures.
ANTI-ROLLBACK PROTECTION:
- Phones must permanently block installation of older software versions, even if officially signed by the manufacturer, to prevent security downgrades.
From the same government who brought you the mandated spyware app with access to all your phone?
ETA - there’s good stuff mixed in with bad here. Permission is good, but Losing control of the device (version restrictions) isn’t good and those audit logs are creepy.
Yeah, both the proposal and the tech firms “worry” seem to be double-edged swords.