Android N 4th Developer Preview Finalizes APIs, Nearing Public Release

Quick calculations tell us this means every researcher received US$6,700, or US$2,200 per reported vulnerability. They are upping the ante with a 33 percent increase on the payout for a high-quality bug report with proof of concept and a 50 percent increase if an additional CTS test and a patch is included.

Google announced Android N last month at the Google I/O conference, but there were so many new things announced at the event that some of Android’s security enhancements fell through the cracks. Since the company launched the Android Security Rewards program a year ago, it has reportedly paid a hefty $550,000 to 82 people for discovering various bugs in Android.

Over 80 researchers submitted their findings on bugs and vulnerabilities for the Android operating system. They will help to protect smartphones and tablets from threats such as malicious software.

It was said by Alphabet Inc (NASDAQ:GOOGL) that more than a quarter of the problem reported by people, were mostly in the code developed, and used outside of the Android Open Source Project (AOSP).

The company stated that fixing kernel and device driver bugs is also helpful. They boost security for the general mobile industry.

However, this system is part of the Google Vulnerability Rewards Program and will be expanded this year. The company has similar programs for services such as Chrome OS. Anyone who finds security vulnerabilities must sign up for the Android Security Rewards program to get a piece of the action.

Google also paid $10,000 or more to 15 researchers, but no one managed to snag the top prize for a complete remote exploit chain leading to TrustZone or Verified Boot compromise. It involves one app that can access restricted data on a mobile device, and another app that can access information outside the device.

Android N will also get the ability to install OS updates in the background, and then apply them when the user reboots his device the next time.

Vincent Weafer is VP of Intel Security’s McAfee Labs group. This new release also allows developers to rollout their apps in a staged manner as updates are made.