Credit: Joe Maring/Android Authority
TL;DR
- Google is integrating the Rust programming language into the Pixel 10’s modem firmware to mitigate memory-protection vulnerabilities like buffer overflows.
- This change allows the modem to block remote code execution (RCE) attempts triggered by malicious radio signals or SMS, requiring no user interaction.
- Although this change does not affect signal strength or speed, it addresses a security vector that has been overlooked by many in the industry for decades.
Practically all of us take the modem in our phones for granted. It is a vital component that controls network-related functions on your phone, and because of its importance, the modem runs complex and proprietary code that is extremely difficult to secure. Google now has announced A significant change in its security strategy reveals that it has successfully integrated the Rust programming language into the Pixel’s baseband firmware.
While the current Pixel 9 already includes early mitigations, the Pixel 10 is the first Pixel to feature active, memory-safe Rust code within its modem architecture (h/t). Arstechnica).
