The Register® — Biting the hand that feeds IT

Feeds

Android app DRM quietly disabled due to bug

Copy protection crashed apps

By Neil McAllister in San Francisco, 8th August 2012
  • print
  • alert

Agentless Backup is Not a Myth

Google has temporarily deactivated a security feature designed to make it harder to make illicit copies of apps for the latest version of its Android mobile OS, owing to a bug that rendered the secured versions of some apps inoperable.

The feature, which was introduced with Android 4.1 "Jelly Bean," encrypts all paid apps downloaded from the Google Play store with a device-specific key. Apps so encoded will only run on the device that originally downloaded them, even if the user manually copies them to another device using backup software.

Shortly after the new feature debuted in July, however, reports started trickling in to Google's Android bug database that some users were having a hard time launching apps on their Jelly Bean devices, even though theirs were legitimate copies.

The root of the problem appears to be a defect in Android 4.1's system startup code, which corrupts affected apps whenever the user powers on or reboots the device.

According to the latest reports, however, users who have deleted the affected apps and then downloaded them again using the latest version of the Google Play Store have seen the problems disappear.

The re-downloaded apps are now installed in the unencrypted portion of the Android device's memory, where they are stored on earlier versions of Android, which indicates that Google has deactivated App Encryption for Jelly Bean devices until it can produce a fix.

Google did not respond to The Reg's request for comment on the problem. As of last Wednesday, however, the bug's status has been marked "FutureRelease" in the online ad-slinger's database. That means it has been recognized as a legitimate Android bug and will be fixed in a future OS update, although no time frame has been given.

The delay is bound to disappoint developers who have been hoping that App Encryption would cut down on illegal app copying among Android users. In July, software developer Matt Gemmell wrote a lengthy diatribe against Google's mobile OS, saying that compared to Apple's locked-down iOS ecosystem, the Android platform is "designed for piracy."

In truth, however, most developers will be little affected by the sudden – and presumably temporary – loss of App Encryption, because not many of their customers' devices support it in the first place. So far, Jelly Bean is only available for a limited set of kit, including Google's Nexus devices and the Motorola Xoom, with the majority of Android devices are still running version 2.3 of the OS. ®

Regcast training : Hyper-V 3.0, VM high availability and disaster recovery

COMMENTS

House Rules Send Corrections
All Reader Comments (81)
Highly Rated
Da Weezil
Reply Icon

Entitlement is part of device OWNERSHIP

Being free of a walled garden is WHY I chose Android - otherwise I'd still be on my trusty old 6230i.

My "sense of Entitlement "as an OWNER of the handset is to be able to install from any source I trust and - where it is a "paid for" app - have it work and deliver the value I have paid for - without having the aggravation of having to jump though hoops each time something in the DRM chain falls over.

The day people like you get to dictate what I can do with my handset is the day your market shrinks to zero and yes - you go bankrupt.

16
2
Chet Mannly
Reply Icon

Re: Oh...

"Matt Gemmell can fuck off too."

Amen! - his statement: "If you want a platform to be commercially viable for third-party software developers, you have to lock it down." is complete stupidity.

I remember an operating system called windows that wasn't locked down the way he prescribes, and last time I checked it had a few third party developers making software for it :-P

Just sayin...

13
1
M Gale

No more paid apps for me

Not until someone cracks that DRM wide open so I never have to deal with "sorry, you're a pirate and you can fuck off" messages ever again.

I just want what I paid for, and I don't want it disappearing because some cock-ends think it's okay to tie my device into some remote DRM checking server that can and has gone wrong. Once is too many times. The amount of times MX Player Pro, Asphalt 6 HD and a number of other paid apps have thrown robotic insults at me is beyond taking the piss.

If only I just got the lot of them from the 'bay to start with. This wouldn't have been a problem.

14
3

More from The Register

Bjarne Again: Hallelujah for C++
Plus: Now officially OK to admit you never used STL algorithms
101
Interwebs taunt Sir Jony over Apple eye candy makeover
Hey Ive, Ive... add more unicorns, willya?
79
SCO vs. IBM battle resumes over ownership of Unix
Zombie lawsuit back and wants to suck the brains out of Linux
119
Red Hat to ditch MySQL for MariaDB in RHEL 7
So long, Oracle! Don't let the door hit you on the way out
65
Shy? Socially inadequate? Fiddling with your phone could help
App 'tells the brutal truth' about social inadequates' chatup lines
22
Java EE 7 melds HTML5 with enterprise apps
New release arrives with GlassFish, NetBeans support
12
breaking news
'Office Facebook' firm Tibbr wants you to PAY for mobe-meetings app
Great idea. Punters won't cough for it though
9
breaking news
The only Waze is Google: Ad giant tipped to gobble map app 'for $1.3bn'
Pac-Man-satnav-ish upstart in bidding war with Apple, Facebook
16
breaking news
PM Cameron calls for modern, programmable computers! (We think)
IT education musings to G8 chiefs to mystify IT industry
105
Apple at WWDC: Sleek new iOS, death of the big cats, pint-sized Mac Pro
CEO Cook: 'The biggest change to iOS since the introduction of the iPhone'
151