With each new release of Android, we try to stay two steps ahead of the bad guys. When it comes to security, Lollipop is the biggest update for Android to date. From the moment you turn on a device running Android 5.0, you’ll have a wealth of new security features protecting you, like encryption by default and a lock screen that’s easier and more powerful than ever.
The simplest way to stay safe is now even easier
What’s the simplest way to keep the data safe and secure on your mobile device? Use a screen lock! Lost and stolen devices are the number-one security issue affecting smartphone users. Still, a lot of people using mobile devices don’t use a pin or password because it takes too long to unlock, dozens of times per day. We’re making it easier than ever with Smart Lock, which lets you tell your phone to unlock using Bluetooth pairing, NFC, or simply your smile—faster than before. Plus, you can allow certain notifications to be accessible from the lock screen, helping you quickly get at the information you need while still keeping your device protected.
More secure, from the first time you turn it on
People use safes and combination locks to protect their physical goods. With digital information, encryption acts like a safe to protect your information from thieves and snoops. That’s why we’ve worked hard to provide this added security for our users, which will now be the default from the moment you power on a new device running Lollipop, keeping your data safer without needing you to fiddle around in the settings. Full device encryption occurs at first boot, using a unique key that never leaves the device. This is the safest way to encrypt your device, which is why it’s how we’ve built encryption on Android since it first launched three years ago.
SELinux, making Android secure enough for the most demanding customers
Android has had a strong application sandbox since the very beginning; Security Enhanced Linux (SELinux) pushes enforcement of the Android security model further into the core of the OS and makes it easier to audit and monitor so there's less room for an attack. With Android 5.0, SELinux Enforcing mode is required for all applications on all devices. Multiple vulnerabilities have been prevented since we first introduced SELinux last year; by strengthening it even more, Android becomes a top choice for enterprise customers that have really strict security standards, such as the government. This is a feature that the broader security community helped us build, and is an example of how Android’s open nature helps make your device more secure every day.
There are a number of other features that were added to the platform to keep your devices secure. So, not only is Lollipop is the sweetest update of Android to date, we also built in a rigid (security) Lollipop stick for the core and and kevlar wrapping on the outside—to keep you safe from the bad guys, inside and out. Posted by: Adrian Ludwig, Lead Security Engineer, Android
Update: In September, we announced that all new Android Lollipop devices would be encrypted by default. Due to performance issues on some Android partner devices, we are not yet at encryption by default on every new Lollipop device. That said, our new Nexus devices are encrypted by default and Android users (Jelly Bean and above) have the option to encrypt the data on their device in Settings ---> Security ---> Encryption. We remain firmly committed to encryption because it helps keep users safe and secure on the web.