A fifth of Android applications aren't playing fair, according to SMobile Systems which reckons that mobile application marketplaces are rife with malware.

SMobile ran though more than 48,000 applications on the Android Marketplace (about three quarters of the whole marketplace) collecting details of the permissions the applications requested – Android applications have to list resources required – and SMobile bases is analysis (pdf) on those requests.

The more perceptive reader will have noticed a flaw in such an analysis – it might be true that 20 per cent of Marketplace applications request access to personal information, but if those applications are social-networking-integration apps then they're going to need access to that data.

Similarly, five per cent apparently request access to the phone dialler, which SMobile points out can be used "to place a call to any number without interaction or authority from the user": but if those applications are shell replacements then that's entirely appropriate.

The Android Marketplace relies on the penguin approach – the first downloaders of an application are expected to report their suffering to protect everyone else. It's not a perfect system, and less secure than Apple's draconian impositions, but it maintains the freedom of the platform that some people consider more important than its security.

"Just because it's coming from a known location like the Android market or the Apple App store... doesn't mean you can assume that the app isn't malicious or that there is a proper vetting process," SMobile's chief technology officer told CNet, skipping over the fact that Apple's app store does have a proper vetting process (biased, contradictory and inconsistent, admittedly, but it is a process).

SMobile might have a point about Android applications asking for more privileges than they need, and that spyware is available for Google's platform. Android users do need to think twice before downloading applications, but saying that application stores are awash with malware seems more than a little alarmist. ®

Related stories

• Free Android antivirus clocks up 2.5m downloads (11 August 2010)

  https://www.theregister.com/2010/08/11/free_android_security_app/

• First SMS Trojan for Android is in the wild (10 August 2010)

  https://www.theregister.com/2010/08/10/android_sms_trojan/

• Sophos downplays Android malware threat (3 August 2010)

  https://www.theregister.com/2010/08/03/android_malware/

• 'Suspicious' Android wallpaper app nabs user data (29 July 2010)

  https://www.theregister.com/2010/07/29/suspicious_android_app/

• Intel preps x86 Android for summer release (24 June 2010)

  https://www.theregister.com/2010/06/24/x86_android/

• Google vanishes Android apps from citizen phones (24 June 2010)

  https://www.theregister.com/2010/06/24/google_lifts_two_apps_from_android/

• Flash bursts onto Android (22 June 2010)

  https://www.theregister.com/2010/06/22/flash_mobile/

• Mobile group drops Java price against Apple and Android (21 June 2010)

  https://www.theregister.com/2010/06/21/jave_mobile_verification_price_cut/

• Google risks OEM wrath for unified Android UI plan (20 June 2010)

  https://www.theregister.com/2010/06/20/google_android_oem/

• Apple not yet dominant enough for anti-trust action (17 June 2010)

  https://www.theregister.com/2010/06/17/apple_antitrust/