this post was submitted on 11 Jan 2026
85 points (94.7% liked)

Technology

78661 readers
3375 users here now

This is a most excellent place for technology news and articles.

Our Rules

  1. Follow the lemmy.world rules.
  2. Only tech related news or articles.
  3. Be excellent to each other!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, this includes using AI responses and summaries. To ask if your bot can be added please contact a mod.
  9. Check for duplicates before posting, duplicates may be removed
  10. Accounts 7 days and younger will have their posts automatically removed.

Approved Bots

founded 2 years ago
MODERATORS
L3s@lemmy.world
enu@lemmy.world
technopagan@lemmy.world
L4s@lemmy.world
L3s@hackingne.ws
85
India proposes forcing smartphone makers to give source code in security overhaul (www.reuters.com)
submitted 3 days ago by Gemini24601@lemmy.world to c/technology@lemmy.world
10 comments fedilink hide all child comments
 

I think that this would be great, since source code auditing would provide insight into anti-consumer additions like malicious backdoors, hidden spyware capabilities, unintended vulnerabilities, etc. However, this could be very bad if this passes and then escalates to mandatory source code modification at the request of a sovereign state. As always, there are possible pros and cons to this approach.

you are viewing a single comment's thread
view the rest of the comments
[โ€“] PierceTheBubble@lemmy.ml 11 points 2 days ago* (last edited 2 days ago) (1 children)

India proposes requiring smartphone makers to share source code with the government and make several software changes as part of a raft of security measures.

How does that sound promising at all? Especially when initiated by a government, previously having attempted to enforce government spyware, to be installed on all consumer smartphones. The following excerpts are from India's proposed phone security rules that are worrying tech firms

Devices must store security audit logs, including app installations and login attempts, for 12 months.

Phones must periodically scan for malware and identify potentially harmful applications.

Defined to be potentially harmful by who? Right.

Phone makers must notify a government organisation before releasing any major updates or security patches.

We cannot approve of the security patch just yet, as we must first extensively exploit the vulnerability...

Devices must detect if phones have been rooted or "jailbroken", where users bypass built-in security restrictions, and display continuous warning banners to recommend corrective measures.

Phones must permanently block installation of older software versions, even if officially signed by the manufacturer, to prevent security downgrades.

[โ€“] cryptix@discuss.tchncs.de 5 points 1 day ago

Wait this is not what I understood from the heading. This looks like they want control , not transparency.