In a mobile world full of capable messaging apps such as Allo, Snapchat, Line, WeChat, and others, plain old text messaging seems a bit antiquated by comparison. Due to the technological constraints imposed by simple messaging service (SMS), the cellular standard which powers basic text messaging, cellular messaging lacks support for the sort of animations, videos, and stickers which most clients boast. But that’s about to change. On Friday, Google announced that it will begin rolling out an advanced texting standard called rich client messaging, or RCS, to Android phones on the Sprint network.
RCS is best described as text messaging on steroids — basically, it’s a modernized version of SMS that brings the aging standard up to par with clients like iMessage and Facebook Messenger. It supports features like group chats, read receipts (timestamps that indicate when a message has been received and seen), high-resolution photo sharing, and typing indicators (the animations that indicate when chat participants are pecking out sentences). It can transmit images and videos up to 100 times larger than multimedia text messaging, the outgoing standard that currently performs that legwork. And it features robust support for group messaging, including the ability to name groups, add new members, and leave existing groups.
The upgrade will begin in earnest later this year. Sprint subscribers with Android devices running KitKat 4.4 will see RCS become available in the coming weeks, provided they’ve installed Google’s Messaging application from Android’s Play Store app market and selected it as their default messaging app. Select LG and Nexus phones, meanwhile, will be “automatically upgraded” to RCS through a forthcoming app update. And owners of Google’s Pixel devices, which ship with Messenger preloaded, will have access to RCS as long as they don’t switch their default messaging app to another client.
Eligible users will be notified via popup message when RCS becomes available. From within Messenger, they’ll be able to toggle a few of the standard’s features including read receipts, typing indicators, and whether or not data’s used for messaging.
Taking advantage of RCS won’t be nearly as complicated in the future. Beginning next year, all Android devices sold by Sprint will come with Messenger configured as the default texting app.
The launch is the fruit of Google’s Jibe Mobile purchase. The company’s technology, which Google acquired late last year, forms the framework of Google’s Universal RCS platform, a standardized text messaging platform the company announced at Mobile World Congress in February. In a speech to attendees, a Google representative promised a “consistent” and “inter-operable” version of the RCS spec that would work with non-Android devices and integrate with third-party APIs and open source tools.
Indeed, Google’s RCS ambitious extend far beyond the Sprint network. The company intends to bring the spec to other carriers in the coming months, though it declines to say which.
But its hands are tied. RCS, unlike the messaging technologies behind internet-based clients like Facebook Messenger, requires support at the cellphone carrier level, and the uptake has been slow: only 49 carriers worldwide have adopted RCS since its debut in 2007. (A notable holdout in the U.S. is Verizon, the nation’s largest cellular provider.) Worse yet, fragmentation is beginning to emerge: many of those carriers are on an older version of RCS that’s only partial compatibility with the flavor that Sprint and others plan to implement.
And then there’s the elephant in the room: Google’s own internet-based messaging platforms, all of which eschew support for RCS in favor of older or proprietary alternatives. Google’s new Allo client, which comes pre-installed on Pixel phones, lacks robust support for cellular messaging. And Hangouts, the company’s all-in-one messaging client, has yet to implement RCS.
But all the same, the search giant appears committed, at least in part, to moving toward the promised future of RCS: platform-agnostic advanced text messaging. “[Text messaging] is one of the most ubiquitous forms of communication today, used by billions of people worldwide,” Amir Sarhangi, head of Google’s RCS efforts, wrote in a blog post. “We’re excited to see this first launch of RCS come to life, providing a better carrier messaging experience for millions of people in the U.S.”
The lead up to the official debut of HTML 5 in October 2014 was a very big deal. Now two years later HTML 5.1 was declared an official standard on November 1.
With HTML 5 work was ongoing for more than seven years and the standard replaced HTML 4.x which had been in place for a decade. HTML 5.1 in contrast is a very incremental step up, dealing with minor items that fell out from the original HTML 5 approach.
The features that HTML 5.1 add are:
• The picture and srcset attributes allow responsive image selection.
• The details andsummary elements enable authors to provide extended information that users can choose whether to read.
• The menuitem and type=”context” attribute value enable authors to add functionality to the browser’s context menu.
• The requestAnimationFrame API allows for more efficient animation.
• enqueueJob and nextJob help explain Promise resolution in terms of microtasks.
• The rev attribute for links, primarily to support RDFa (previously defined in HTML 4).
• HTMLMediaElement and srcObject objects.
• Enable cross-origin track and EventSource and cross-origin content for ImageBitmap in canvas.
• event-source-error, event-track-error and event-track-load events for media fetching.
• onrejectionhandled and onunhandledrejection and APIs for tracking promise rejection.
• HTMLTableCaptionElement, HTMLTableSectionElement, HTMLTableRowElement, for HTML table elements.
• history.scrollRestoration to control where a users’ view is directed when navigating through their history.
• IDL [SameObject], for some objects that return collections.
• Add “noopener” to rel and window to allow for browsing contexts to be separated.
• nonce attribute on script and style to support the use of Content Security Policy.
A few interesting things, but nothing really groundbreaking and nothing that will actually impact the end-user experience today either. As was the case with the debut of HTML 5, browser vendors have long since moved waiting for the W3C before using new web technologies.
The big push now from the web vendors is in support of native code, things like ‘C’ in the browser, which has been talked about for many years, but has never been implemented in a truly standardized way.
More users around the world are accessing the internet from mobile devices than from desktop computers for the first time, according to internet monitoring firm StatCounter. The combined traffic from mobile and tablet devices tipped the balance at 51.2 percent, vs. 48.7 percent for desktop access, marking the first time this has happened since StatCounter began tracking stats for internet usage.
It’s a huge moment for the web overall: this means going forward, companies that haven’t yet decided to focus on a mobile-first approach to their internet services and web properties really should, as the trend line is unlikely to reverse.
StatCounter also found that the maturity of the market impacts which is the dominant means of access, and as you might have guessed, mobile platforms are far and away the method of choice for internet access when it comes to emerging markets like India, where they account for 75 percent of use. More mature markets including the UK, the US and Ireland still see use swinging in favor of desktop, but the trend is still showing a narrowing gap.
This is not surprising news, given other recent milestones. In April last year, for instance, comScore found that the number of internet users who employ mobile platforms exclusively has surpassed those who only connect via desktop in the US (this doesn’t consider users who access via both methods). And Google revealed that more searches through its engine are being conducted via mobile platforms than on desktop as of last May.
This may have been a long time coming, but it’s still astounding how many major brands (including possibly our own) favor the desktop first and prioritize mobile web second. Maybe now that this tipping point has been achieved, that will start to change a lot faster.
Wi-Fi is about to get much, much faster. The Wi-Fi Alliance is now beginning to certify smartphones, laptops, routers, and other devices that include a super-fast Wi-Fi standard called WiGig, which nearly doubles Wi-Fi’s current top speed. The Alliance says it’ll be in “marquee” smartphones and laptops next year.
WiGig only works over a short range — about 33 feet (or 10 meters), according to the Wi-Fi Alliance. That means even once you get a router and a phone or laptop that support it, you’ll probably only get those speeds within the room the router is located in. “We talk about it as an in-room technology,” says Kevin Robinson, who is VP of marketing at the Wi-Fi Alliance.
That’s a big limitation for WiGig, but it still opens up a lot of possibilities — perhaps the most exciting of which is for VR. Right now, if you want to use a virtual-reality headset with a game console or PC, it needs to be tethered using a series of thick cables because current wireless standards just aren’t fast enough. That constrains movement and limits how immersed you can be in a VR experience.
WiGig, on the other hand, should be fast enough to support VR. The Wi-Fi Alliance also suggests its high speeds will be useful for augmented reality, 4K video, and streaming phone and laptop displays to desktop monitors.
The technology could also be used out of the home by internet providers or public access points. WiGig relies on the same millimeter wave frequencies that Alphabet’s Access(formerly Google Fiber) and Starry, an internet startup from the founder of Aereo, are looking into using to deliver high-speed internet from streets to homes without using cables. Robinson also says WiGig could find applications in sports stadiums and other large venues.
In addition to WiGig, there’s one other wonky term you’ll want to get used to: 802.11ad. That’s the new wireless standard that includes support for WiGig. Most modern phones, laptops, and routers support 802.11ac Wi-Fi, which tops out (in theory) at speeds of 4.5 Gbps, while these forthcoming 802.11ad devices are (theoretically) supposed to reach speeds of 8 Gbps.
We’re already starting to see the first of these 802.11ad devices hit the market — some routers supporting it were announced earlier this month.
WiGig itself isn’t brand new — it’s been used here and there over the past few years, and, as those routers illustrate, is already on the market in some key products. But what’s happening today, with the announcement of the Wi-Fi Alliance’s certification program, is essentially the starting gun for the deployment of WiGig. Major members of the tech industry, who make up the Alliance, have all agreed that it’s time to move forward with WiGig. Over the next few years, we should see that happen.
New rooting technique is believed to work against every version.
There’s a new method for rooting Android devices that’s believed to work reliably on every version of the mobile operating system and a wide array of hardware. Individuals can use it to bypass limitations imposed by manufacturers or carriers, but it could also be snuck into apps for malicious purposes.
The technique comes courtesy of a Linux privilege-escalation bug that, as came to light last week,attackers are actively exploiting to hack Web servers and other machines. Dirty Cow, as some people are calling the vulnerability, was introduced into the core Linux kernel in 2007. It’s extremely easy to exploit, making it one of the worst privilege-elevation flaws ever to hit the open-source OS.
Independent security researcher David Manouchehri told Ars that this proof-of-concept code that exploits Dirty Cow on Android gets devices close to root. With a few additional lines, Manouchehri’s code provides persistent root access on all five of the Android devices he has tested.
“It’s very easy for someone who’s somewhat familiar with the Android filesystem,” Manouchehri said of the exploit. “From what I can tell, in theory it should be able to root every device since Android 1.0. Android 1.0 started on [Linux] kernel [version] 2.6.25, and this exploit has been around since [Linux kernel version] 2.6.22.”
A separate security researcher who asked to not be identified said he and several other people developed a separate rooting exploit. It’s based on this publicly available Dirty Cow exploit that they modified to make work on Android and to give it additional capabilities.
“We are using a rather unique route on it that we can use elsewhere in the future as well,” the researcher said when asked why he didn’t want to disclose the code or want his name published. “I don’t want Google or anyone shutting down that route.”
The video below shows the researcher using his app to root an Android-powered HTC phone, which is connected to a computer by a USB cable. The first ID and su commands show that the device is unrooted. After running “moo”—the name of the file containing the exploit code—and then running the su and ID commands again, it’s clear that the device has been rooted.
Both of the exploits allow end users to root Android phones so they have capabilities such astethering that are often restricted by individual manufacturers or carriers. By gaining access to the core parts of the Android OS, owners can bypass such limitations and vastly expand the things their devices can do. The darker side of rooting is that it’s sometimes done surreptitiously so that malicious apps can spy on users by circumventing application sandboxing and other security measures built into Android.
Just as Dirty Cow has allowed untrusted users or attackers with only limited access to a Linux server to dramatically elevate their control, the flaw can allow shady app developers to evade Android defenses that cordon off apps from other apps and from core OS functions. The reliability of Dirty Cow exploits and the ubiquity of the underlying flaw makes it an ideal malicious root trigger, especially against newer devices running the most recent versions of Android.
“I would be surprised if someone hasn’t already done that this past weekend,” Manouchehri said.
Dirty Cow came to light a few days before the release of a separate rooting method for Android devices. “Drammer,” as the latter exploit has been dubbed, is significant because it targets the “Rowhammer” bitflipping hardware bug, which allows attackers to modify data stored in device memory. Google plans to release a patch in November that makes Rowhammer much harder to exploit.
Now that the Dirty Cow hole has been patched in the Linux kernel, it’s only a matter of time until the fix makes its way into Android, too. But the soonest it will be available is with the release of next month’s Android patch batch. Of course, that’s not available for a large number of devices, mostly because of limitations set by manufacturers and carriers.
An unstable and experimental version of the Chrome web browser, going by the name of Chrome Canary, is now available for Android. This latest Chrome edition is destined to give users an idea of what’s in store from future versions of the browser for smartphone and tablet.
Already available for Windows and macOS, Google Chrome Canary has now landed on Android. Designed primarily for developers and early adopters, this version of the browser features brand new functions, many of which are still experimental.
Like any product of the kind, Chrome Canary is prone to crashing and should be used with caution. What’s more, Google releases updates on an almost daily basis, which can prove laborious for users and consume large amounts of data. Evidently, this version of Chrome can be used alongside the official application, which promises perfect stability.
Note, however, that Google isn’t officially announcing all of the new functions it gradually introduces to the experimental browser. The firm is above all seeking to check that the system can still operate once the functions are integrated, before rolling them out to the developers’ edition of Chrome.
In total, there are four different versions of Google Chrome: Chrome, Chrome Beta, Chrome Dev and Chrome Canary.
For anyone interested in taking a look, Google Chrome Canary is available to download free from Google Play.
More mobile services will start sharing spectrum, so your speeds could vary more
The long fight over LTE networks sharing frequencies with Wi-Fi may be just the first of many battles as device makers and service providers try to make the most of the limited available spectrum.
Around the world, regulators and industry are working on how to let different kinds of networks use the same spectrum. The new techniques and policies they use should lead to better mobile performance in some areas, but it’s also likely that wireless performance will fluctuate more as you move around.
LTE-U has grabbed headlines because it involves licensed carriers using some of the channels that consumers depend on for Wi-Fi service, which often is free or runs on users’ own routers. Wi-Fi supporters cried foul last year after Qualcomm and some U.S. carriers proposed the technology, and it took until last month for the two sides to reach an apparent peace agreement.
LTE-U products could start getting certified soon with a battery of coexistence tests. But this won’t be the last time mobile users find the services they rely on forced to coexist with other technologies. Growing demand for wireless capacity, plus the runaway success of Wi-Fi as an example of a new approach to spectrum that worked, are bringing more players to the table in many cases.
Though new technologies make spectrum-sharing more feasible, exactly how these schemes will play out isn’t clear yet.
“It’s a very crowded world, and we are adjusting our expectations for how these things are going to work together,” said Harold Feld, senior vice president of the U.S. consumer advocacy group Public Knowledge, on a recent LTE-U panel discussion.
Interference issues used to be relatively simple, Feld said. If one operator held a license, anyone else had to get off the frequency. If the spectrum was unlicensed, every user had to accept interference and not do anything to monopolize the band.
LTE-U raised new questions, because even though the 5.8GHz band where it operates is unlicensed and was set aside to allow room for innovation, this wasn’t a question of two small, experimental technologies vying for space. Millions depend on Wi-Fi today, and at least two major U.S. carriers – Verizon and T-Mobile – want to roll out LTE-U to supplement massive cellular networks.
Wi-Fi and LTE use different methods to keep order among wireless channels. If unmodified LTE networks were unleashed in an unlicensed band, the effect would be “devastating,” said Patrick Welsh, Verizon’s assistant vice president for federal regulatory affairs, during a panel discussion last month.
Verizon wanted to use the 5.8GHz band for extra capacity, so it brought together engineers from its equipment suppliers to develop LTE-U, Welsh said. That technology is available for use primarily in the U.S., South Korea, China and India.
To do the same thing, carriers in most other countries had to wait for another technology called LAA (Licensed Assisted Access), which was being standardized by LTE’s overseers at the 3GPP and took longer to finish. It uses different coexistence techniques that most Wi-Fi backers think are safer. Some U.S. carriers are planning eventually to use LAA, too.
Meanwhile, vendors and service providers are jockeying for position on several other frequency bands that may host multiple services.
The 3.5GHz band: The U.S., Australia, the U.K., and other countries around the world want to open up frequencies in the 3.5GHz band to mobile devices. Just adding this band to the channels available for Wi-Fi wouldn’t work because the exact frequencies available in each country are different, Tolaga Research analyst Phil Marshall said.
In some cases, mobile users of 3.5GHz will have to share the band with existing users, such as the U.S. Department of Defense. In the U.S. case, the military would get first priority in the few areas where it uses the spectrum, service providers could get a new kind of license in some local areas, and other users would get in line behind them.
Millimeter-wave bands:Millimeter-wave bands targeted for use with future 5G networks also seem to be bound for complicated sets of uses. In particular, the 50GHz to 70GHz frequencies are partly unlicensed and partly “lightly licensed” to incumbent users in some countries, Marshall said. Unlicensed spectrum, in general, is expected to play a big role in 5G, though exactly how won’t be totally clear for a few years.
DSRC band: Regulators in both the U.S. and Europe have grappled with coexistence between Wi-Fi and DSRC (Dedicated Short-Range Communications) systems that use frequencies around 5.9GHz. These include systems for cars to communicate with each other and with nearby objects like tollbooths, though adoption has been limited, especially in the U.S. In-car Wi-Fi systems have been accused of hurting DSRC performance, and in the U.S. there is a drive to force DSRC to share its spectrum with Wi-Fi.
What’s missing, at least in the U.S., is a standard way of defining harmful interference between technologies that are bound to overlap with each other because they use the same spectrum, Public Knowledge’s Feld said. There should also be a standard framework for settling fights over shared spectrum so the Federal Communications Commission, or industries the FCC prods to solve their own disputes, don’t have to reinvent the wheel every time, he said.
Opening more frequencies for mobile Internet access should be good for users overall, analyst Marshall said. He doesn’t expect performance hits on Wi-Fi from LTE-U, for example.
But as consumers increasingly get their mobile access over frequencies shared by numerous technologies, the boost that comes from the extra spectrum may be a fleeting thrill, Marshall said.
“You’re talking about very, very high capacity if you’ve got that spectrum available,” Marshall said. “If you haven’t, you push down to a lower rate.”
DressCode has been found circulating in at least 3,000 Trojanized apps
An Android malware is spreading across app stores, including Google Play, and has the capability of stealing sensitive files from corporate networks.
DressCode, a family of Android malware, has been found circulating in at least 3,000 Trojanized apps, security firm Trend Micro said on Friday.
DressCode hides itself inside games, user interface themes, and phone optimization boosters. It can also be difficult to detect because the malicious coding only makes up a small portion of the overall app.
On Google Play, Trend Micro found more than 400 apps that are part of the DressCode family, it said. That’s 10 times more than what security researchers at Check Point noticed a month ago.
Trend Micro added that one these apps on Google Play had been installed 100,000 to 500,000 times. Once installed, DressCode’s malicious coding will contact its command and control servers and receive orders from its developers.
The malware is particularly dangerous because it can infiltrate whatever internet network the infected device connects to. Imagine a user bringing a phone to the office and connecting to the corporate network. The makers of DressCode could use the phone as a springboard to hack into the corporate network or download sensitive files, Trend Micro said.
“With the growth of Bring Your Own Device (BYOD) programs, more enterprises are exposing themselves to risk via carefree employee mobile usage,” the security firm said.
According to Trend Micro, 82 percent of businesses have BYOD programs, allowing their employees to use personal devices for work functions.
The DressCode malware can also be used to turn infected devices into a botnet. This allows the infected devices to carry out distributed denial-of-service (DDOS) attacks or be used to send spam.
Trend Micro has found DressCode infecting enterprise users in the U.S., France, Israel, Ukraine, and other countries. The security firm is advising that users always check the online reviews for whatever apps they download.
Users can also install Trend Micro’s mobile security products to protect themselves.
Google didn’t immediately respond to a request for comment on the malware.
Would-be LTE-U carriers told to take these tests, or just leave off
The Wi-Fi Alliance’s long-awaited – and controversial – LTE-U Coexistence Test plan has landed.
The reg-walled test plan is supposed to help work out if LTE-U – the mobile carriers’ plan to use unlicensed spectrum if nobody else is talking – can coexist with Wi-Fi.
Carriers, already under a spectrum squeeze, are hoping they can pitch their tents on Wi-Fi’s campground, promising that LTE-U won’t disrupt Wi-Fi. will play nice if there are Wi-Fi users around.
Negotiations between the groups and America’s Federal Communications Commission have been tense, and at one point, Qualcomm complained its input to the test plan had been ignored.
In particular, Qualcomm had complained that the proposal to use -82 dBm as the threshold LTE-U would treat as “vacant” was too loose, and would leave a lot of Wi-Fi users out in the cold. That, however, is the lowest test threshold in the test plan.
Qualcomm is already conducting LTE-U field trials with T-Mobile, and early this week it asked the FCCfor a 12-month extension to the authorisation it first received in May of this year.
Reading between the lines of the Wi-Fi Alliance’s love-in-media-release, The Register gets the impression the arguments remained unresolved. The document says “Early agreement on foundational principles, such as a commitment to maintaining the typical connectivity experience for Wi-Fi users and a clear definition of fairness, allowed completion of the work on an aggressive timeline and guided development of test plan specifics.”
“These same, shared principles augmented by robust technical data were instrumental in finalizing aspects of the test plan where consensus was unachievable. Coming to an industry-agreed solution required compromises from all sides. Therefore, the test plan is designed to be used as an unedited whole. Alternate test approaches, such as selectively omitting or modifying portions of the test plan would not have been acceptable in this cross-industry effort since those tactics will not provide assurances of fair coexistence.”
Which sounds a lot like “take it or leave it”, a sentiment re-enforced with the further pronouncement that ““the test plan is designed to be used as an unedited whole” and an accompanying warning against carriers cherry-picking the document in their tests.
The test plan itself is a 51-page thicket of densely technical procedures. If you can find something of interest in it, let us know.
The nation’s third-largest carrier gets into 5G in a big way.
T-Mobile has mocked the other carriers for making ridiculous promises and hyping up 5G, or the next generation of wireless technology.
So what does it do on Tuesday? Hype up 5G.
T-Mobile Chief Technology Officer Neville Ray laid out his vision for the carrier’s move into 5G, which it’s making in a big way. Working with Nokia, Ericsson and Samsung, T-Mobile was able to show off speeds of 12 gigabits per second. That’s more than three times as fast as the trials Verizon conducted back in February.
Just to put these speeds into perspective, Verizon’s 5G trials alone represented a connection that was several hundred times faster than today’s LTE and three and a half times faster than Google’s superfast Fiber internet service.
Those kinds of speeds are key to driving a whole new generation of applications, whether its virtual reality, self-driving cars or the ability for you to download the entire library of Seinfeld episodes in minutes. But don’t hold your breath for 5G to show up anytime soon. The wireless industry hasn’t come to an agreement on the underlying standards, and most experts believe the real ball will get rolling in 2018.
As a result, these speed games don’t matter much to what the service will actually look like down the line. AT&T, for instance, claims it has hit 14 gigabits per second in its own lab tests.
Still, Ray said T-Mobile is already working on the transition.
“5G is something we are building now,” he said, noting that the investment pouring into its LTE network will serve as the foundation.
Verizon was the first to sound the 5G horn, last year, when it jumped out with its intention to test the technology, partially as a way to influence the international wireless community. AT&T followed suit and now has two test locations. Both plan to use a 5G-like wireless ability to test out an alternative version of home broadband service.
T-Mobile, meanwhile, said it is working with the Federal Communications Commission, its majority owner Deutsche Telekom and standards bodies in its preparation for 5G