An Android Change for the Better (Maybe)

Chatty smartphones have been an issue for years.  Whether you're concerned with security or performance (or both), the amount of Probing being done by unconnected iPhones, Galaxies and the like has been worrisome.  

 Today, things have changed.  Smartphones don't Probe as much.  This is probably for the better, but there could be a catch.

I'm an Apple guy.  Even when I was using PCs in college (things were different back in the 90's, I tell ya), it was always because they were free.  Once I finally had to buy a computer, I went straight to the very first iBook in 2001.  I own an iPod, iPad, iPhone and MacBook Air.  My next computing purchase will probably be an iMac (to better record those promised-but-not-yet-delivered online training videos on WiFi that I touted six months ago).  So, I like the company.  And I like bashing its competitors sometimes.  (Not my most magnanimous trait, but nobody's perfect.)

I liked pointing out that Google's Android operating system had worst wireless security than Apple's iOS.  Including:

-Apple requires server certificate validation by default for WPA2 Enterprise authentications (even if it is user-controlled), while Android does not.

-Apple smartphones and tablets Probe only for hidden SSIDs, like so:


(That's a Probe Request filter in WildPackets OmniPeek.  The SSIDs that you see in those Probe Requests are all hidden SSIDs, with the exception of "Google Starbucks".  Read on to learn why my local Starbucks' SSID is showing up in there.)

-Android smartphones and tablets Probe for all saved SSIDs.

At least, they used to.

I was demonstrating the inferiority of Android's wireless security recently when I learned something new.  They're not inferior anymore.  Some time recently (or, at least in between the time of my previous Android OS update and my recent update to Android 4.2.2) Google changed Android devices' wireless behavior to match that of Apple's.  Android smartphones and tablets started Probing for hidden SSIDs and staying quiet for broadcasting SSIDs, like so:


Of course, I was ambivalent.  GOOD that Android devices' wireless security has improved!  BAD that I can no longer tout Apple devices' wireless security superiority in comparison!

So, there you go.  A begrudging admission that Android's wireless security has been shorn up to match the level of Apple's.  (In fact, Android's wireless security is even considered superior in some circles because Android has an option to eliminate user-based verification of server certificates during WPA2 Enterprise authentication.  But we don't need to discuss that right now.)

But... (and, there's always a But)

...this may actually be bad for mobility.

Apple iOS and Android devices don't Probe unless they connect to a hidden SSID.  Nice.  But, let's take a step back.  Why is Probing in the IEEE 802.11 standard to begin with?

Probing (a process where a client/station device sends a Probe Request frame in order to elicit a Probe Response frame from an access point [AP]) is in the 802.11 standard to facilitate mobility.  Roaming.  Handoff.  Whatever you want to call it when someone moves out of the range of one AP and into the range of another.  Probing also helps devices connect more quickly when starting/waking up and can help devices find an AP in areas that are congested with neighboring WiFi devices and APs.

So, Probing can be a good thing.  Especially for mobile devices in crowded areas.  And now Android devices (like Apple iOS devices) do less of it.

If you say to yourself, "gosh, this iPhone/iPad/Galaxy/HTC One seems to really crap out when I go to a crowded place" (like the Starbucks by my place in Los Angeles), then you might want to ADD Probing to your device.  How?  By tricking your device into thinking that the SSID is hidden.

That's what I did at my local Starbucks.  My phone sends out these Probe Requests...


...because I manually added the "Google Starbucks" SSID to my phone.  Instead of tapping on "Google Starbucks", I tapped Settings -> Wi-Fi -> Other... (ellipse in the GUI, not added by me) once I got in line for a Tall Skinny Peppermint Mocha, Hold The Whipped Cream and then typed in "Google Starbucks".  I don't know if it helps a whole heck of a lot (Starbucks still uses the darned Captive Portal, which will slow down any wireless connection), but it does optimize a couple of things.

In summary, Android's move to Apple-like wireless behavior is good for security and overall channel performance.  But if your problems are mobility and speed of connectivity, then you might want to un-do what Android has done by adding your SSID manually.

***

If you like my blog, you can support it by shopping through my Amazon link or donating Bitcoin to 1N8m1o9phSkFXpa9VUrMVHx4LJWfratseU

ben at sniffwifi dot com

Twitter: @Ben_SniffWiFi

Comments

  1. AnonymousDecember 23, 2014 at 8:12 AM

    Cool trick with pre-defined network - will test it on my Android devices :)

    Here's something you can still tout (I've done it for Android, you can try doing it for Apple, I'm pretty sure it can be done, but I'm over with Apple).
    https://arsenb.wordpress.com/2014/12/23/bypassing-android-security-via-backups-psk-recovery/

    My opinion, that in consumer-oriented OSes the weakest link in 90%+ of cases is the user, be it insecure backups, approving wonky certificates or plain ignorance (will write another blog entry on that - wonderful utility was released that unlocks your device as soon as it sees 'known' WLAN - you get the idea :) :) )

    ReplyDelete
    Replies
    1. JohnDecember 23, 2020 at 8:18 AM

      Read this blog about monitoring apps to get more information on the subject شهیاد

      فرشید امین

      شهرام شب پره

      Delete
  2. Oliver MauriceSeptember 14, 2017 at 2:36 AM

    Read this blog about monitoring apps to get more information on the subject

    ReplyDelete
  3. shreekaviFebruary 3, 2020 at 1:19 AM

    Wonderful post and more informative!keep sharing Like this!
    Software Testing Training in Chennai
    Software Testing Course in Bangalore
    Software Testing Training in Coimbatore
    Software Testing Course in Madurai
    Best Software Testing Institute in Bangalore
    Software Testing Training in Bangalore
    Software Testing Training Institute in Bangalore
    Tally Course in Bangalore

    ReplyDelete
  4. sindhuvarunFebruary 13, 2020 at 11:30 PM

    I got wonderful information from this blog. Thanks for sharing this post. it becomes easy to read and understand the information.
    PHP Training in Chennai
    PHP Training in Bangalore
    PHP Course in Bangalore
    PHP Training Institute in Bangalore
    PHP Classes in Bangalore
    Best PHP Training Institute in Bangalore
    AWS Training in Bangalore
    Data Science Courses in Bangalore
    DevOps Training in Bangalore
    DOT NET Training in Bangalore

    ReplyDelete
  5. chintuFebruary 14, 2020 at 2:26 AM

    Great Awesome blog...Thanks for sharing.Waiting for next update...
    Photoshop Classes in Chennai
    Best Photoshop Training in Chennai
    Photoshop Course Training in Chennai
    photoshop training in Guindy
    photoshop training in Vadapalani
    Drupal Training in Chennai
    Manual Testing Training in Chennai
    LoadRunner Training in Chennai
    QTP Training in Chennai
    C C++ Training in Chennai

    ReplyDelete
  6. rinjuestherFebruary 17, 2020 at 2:53 AM

    Nice Blog, Very Informative Content,waiting for next update...
    clinical sas training in chennai
    clinical sas training
    clinical sas Training in Anna Nagar
    clinical sas Training in T Nagar
    clinical sas Training in OMR
    SAS Training in Chennai
    Spring Training in Chennai
    LoadRunner Training in Chennai
    QTP Training in Chennai
    javascript training in chennai

    ReplyDelete
  7. Riya RajFebruary 18, 2020 at 1:10 AM

    Wonderful Post!!! Thanks for sharing this great blog with us.
    Android Training in Chennai
    Android Training Institute in Chennai
    android training center in chennai
    app development course in chennai
    Android Training in Tnagar
    Android training in Thiruvanmiyur
    Big data training in chennai
    Software testing training in chennai
    Selenium Training in Chennai
    JAVA Training in Chennai

    ReplyDelete
  8. Data Science CourseJuly 13, 2020 at 7:31 AM

    Regular visits listed here are the easiest method to appreciate your energy, which is why why I am going to the website everyday, searching for new, interesting info. Many, thank you!

    Data Science Course

    ReplyDelete
  9. Data Science TrainingJuly 13, 2020 at 9:45 AM

    Impressive. Your story always bring hope and new energy. Keep up the good work.

    Data Science Training

    ReplyDelete
  10. Data Science Institute In BangloreJuly 13, 2020 at 9:58 AM

    I feel very grateful that I read this. It is very helpful and very informative and I really learned a lot from it.
    Data Science Training Institute in Bangalore

    ReplyDelete
  11. Best Data Science Courses In Bangalore July 13, 2020 at 11:01 AM

    This comment has been removed by the author.

    ReplyDelete
  12. Best Data Science Courses In Bangalore July 13, 2020 at 11:02 AM

    Really nice and interesting post. I was looking for this kind of information and enjoyed reading this one. Keep posting. Thanks for sharing.
    Best Data Science Courses in Bangalore

    ReplyDelete
  13. PMP Certification BangaloreJuly 14, 2020 at 12:37 AM

    This is my first visit to your blog! We are a team of volunteers and new initiatives in the same niche. Blog gave us useful information to work. You have done an amazing job!
    PMP Certification Training in Bangalore

    ReplyDelete
  14. RevathiAugust 8, 2020 at 1:09 AM

    I really appreciate the work you have done, you explained everything in such an amazing and simple way.thanks lot!!


    android training in chennai

    android online training in chennai

    android training in bangalore

    android training in hyderabad

    android Training in coimbatore

    android training

    android online training

    ReplyDelete
  15. Digital Marketing training - 360DigiTMGSeptember 3, 2020 at 9:41 PM

    Terrific post thoroughly enjoyed reading the blog and more over found to be the tremendous one. In fact, educating the participants with it's amazing content. Hope you share the similar content consecutively.

    360DigiTMG Data Analytics Course

    ReplyDelete
  16. ai course in raipur - 360DigiTMGSeptember 3, 2020 at 10:47 PM

    Extraordinary blog filled with an amazing content which no one has touched this kid of subject before. Thanking the blogger for all the terrific efforts put in to develop such an awesome content. Expecting you to deliver similar contents further too and keep sharing as always.

    360DigiTMG PMP Certification Course

    ReplyDelete
  17. sivaNovember 24, 2020 at 1:44 AM

    The information given in this article is very good and I like it. I have also written this kind of blog you can also read for more knowledge.
    why cloud computing is needed
    benefits of machine learning
    benefits of devops
    php vs .net
    js interview questions
    javascript interview questions for experienced


    ReplyDelete
  18. MageshJanuary 20, 2021 at 11:36 PM

    This is a comprehensive notion and well done. Keeps updating...!
    React JS Training in Chennai
    Blue Prism Training in Bangalore
    Blue Prism Training in Chennai
    Blue Prism Online Training

    ReplyDelete
  19. SrigokulFebruary 25, 2021 at 11:11 PM

    Useful information, Thank you for sharing...

    Data science training in chennai
    Data science course in chennai

    ReplyDelete

Post a Comment

Popular posts from this blog

Go To Sleep, Go To Sleep, Go To Sleep Little iPhone

Image
In some circles, Apple Wi-Fi devices are knows to have problems with lost connections.  iPhones and iPads will unexpectedly miss incoming calls, have delays in receiving push notifications and even be forced to reauthenticate. There is a solution to Apple devices' connection problems, and as with most "device problems", the fix resides on the infrastructure.  The DTIM setting needs to be increased.  ( Apple recommends a setting of 3 or higher .)  Here's why: Some Apple Wi-Fi connection problems stem from Apple iOS devices' use of 802.11 power management.  To understand what Apple devices are doing with power management, one must first understand how 802.11 power management works. Let's start with unicast data.  The 802.11 standard allows devices' Wi-Fi radios to enter the Doze state in order to conserve battery life.  Wi-Fi radios in the Doze state are unable to receive data from the AP, so APs buffer all unicast data that has a destination MAC addr
Read more

Five Facts About 6 GHz Wi-Fi

Image
Two pieces of important news hit the wire recently: the 6 GHz band was approved for Wi-Fi, and alcohol sales have skyrocketed .  Combine the two, and what do we get? A five-pack of Coors Light Cold Hard Facts about Wi-Fi in the 6 GHz frequency band. Editor's note: This is a relatively long post, but 6 GHz Wi-Fi is an undoubtably robust topic. If you have questions after reading this blog, comment below or contact Ben via email or Twitter using the information below, and Sniff Wi-Fi will address those answers in a future post. We may be knee-deep in a global pandemic, but that doesn't mean your humble blogger can't brew up a post on the topic of 6 GHz Wi-Fi. Wi-Fi professionals will soon have unlicensed frequency available in the 6 GHz band. Here, then, are five facts to know about Wi-Fi in the soon-to-be-available 6 GHz frequency band. Fact #1: The 6 GHz band adds 1,200 MHz of spectrum for Wi-Fi The Federal Communications Commission (FCC) is the federal
Read more

Why Are You Slowing Down My WiFi, Apple? To Make Things Better?

Image
I defend Apple a lot.  When Network World wrongly accused  the original iPhone of flooding Duke University's network, I defended Apple .  (It was later found to be a Cisco problem.)  When a health care provider I was doing some work for blamed SIP-enabled iPhones for a VoIP problem, I eventually found out that the APs were to blame .  (The APs were failing to respond to WiFi frames tagged as "Background" QoS.)  Time and time again networking folks blame device makers like Apple, and time and time again the problem ends up being the network. There are times, however, when it really is Apple's fault.  When the network is operating just fine.  This is one of those times.  The problem is that I just don't know why. 802.11n (HT) and 802.11ac (VHT) networks operate in co-existence with first generation (802.11a/b/g, that is) WiFi a lot.  When that happens, the HT or VHT access point operates in mixed mode. There are all sorts of ramifications when a WiFi network
Read more