Google is integrating the Rust programming language into the Pixel 10’s modem firmware to mitigate memory-safety vulnerabilities such as buffer overflows.
The shift allows the modem to block Remote Code Execution (RCE) attempts triggered by malicious radio signals or SMS that require no user interaction.
While the change doesn’t affect signal strength or speed, it addresses a security vector that has been ignored by many in the industry for decades.
Practically all of us take the modem in our phones for granted. It’s a crucial component that controls network-related functions on your phone, and because of its importance, the modem runs complex and proprietary code that is notoriously difficult to secure. Google has now announced a significant shift in its security strategy, revealing that it has successfully integrated the Rust programming language into the Pixel’s baseband firmware.
While the current Pixel 9 already includes initial mitigations, the Pixel 10 is the first Pixel to feature proactive, memory-safe Rust code deeper within its modem architecture (h/t ArsTechnica).