It is my opinion that a stock device (4.0.4) is marginally safer than an OEM build (Sony or Samsung - 4.0.4). The reason I believe this is because the OEM builds tend to have extra software installed (and extra changes made to the OS) that increase the attack surface.
Of course, updating to AOSP 4.2.2 would be even more secure since even more exploit mitigation features were implemented since 4.0.4. BTW, Samsung Nexus?? Do you mean the Nexus S or the Galaxy Nexus? Joshua On Tuesday, May 7, 2013 8:40:05 AM UTC-5, Victor Pettersson wrote: > > I have a short question regarding the security in Android. > > I have a Sony Xperia S device that was sold with Android 2.3.4, later I > upgraded to 4.0.4 via Sony’s PC companion software. My employer claims that > my Sony phone is more vulnerable than a Samsung Nexus which was shipped > with 4.0.4 just because I have upgraded it from 2.3.4 to 4.0.4. > > I have not rooted my phone or anything like that. > > I would like to know if a device with 4.0.4 stock from the manufacturer is > “safer” than a device that is upgraded from 2.3.4? > -- You received this message because you are subscribed to the Google Groups "Android Security Discussions" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. Visit this group at http://groups.google.com/group/android-security-discuss?hl=en. For more options, visit https://groups.google.com/groups/opt_out.
