Google Enables TLS by Default on Android P

Google said [1, 2] on Thursday that in order to ensure the security of user data and devices, applications targeting the next generation of Android systems (Android P) will require the use of encrypted connections by default, which means that Android P will prohibit applications from using all unencrypted connections. Therefore, Android devices running the Android P system, whether receiving or sending traffic, cannot be transmitted in the clear in the future. The transport layer security (Transport Layer Security) security protocol is required, while Android Nougat and Oreo are not affected.

Some people think that all applications on Android P need to use TLS encryption will reduce the Internet experience, in fact, this is a misunderstanding, as for the App for a few old server connections if you have to use clear text transmission, developers need to change the network security configuration of the App To allow this type of connection.

DNS over TLS in Android P

Android P Developer Preview has built-in support for DNS over TLS and adds the Private DNS mode for network settings.

By default, the device automatically uses DNS over TLS if the network’s DNS server supports it, but if users do not want to use DNS over TLS, they can choose to turn it off.

Google also expressed the hope that future operating systems will include secure transmissions in order to provide better privacy protection for all users.