Android
Android is a mobile operating system built on the Linux kernel, originally developed by Android Inc. and acquired by Google in 2005. It is the dominant operating system for smartphones globally, with a market share exceeding 70%. But Android is not merely a consumer technology. It is a distributed systems architecture that exemplifies several fundamental tensions in systems design: openness versus control, fragmentation versus standardization, and platform governance versus developer autonomy.
Architecture: The Linux Kernel and the Android Stack
Android's architecture is layered in a way that reveals both its origins and its design constraints. At the base is the Linux kernel, providing process isolation, memory management, networking, and driver support. Above the kernel sits the Hardware Abstraction Layer (HAL), which abstracts device-specific hardware from the operating system. Above the HAL are the Android Runtime (ART), native libraries, and the Java API framework that applications target.
The systems insight is that Android is a case study in how to build a platform on top of an existing operating system without being constrained by it. The Linux kernel provides the security and isolation guarantees, but Android replaces Linux's user-space model entirely. There is no X11, no GNU toolchain, no POSIX shell by default. The Android Runtime compiles applications to native code ahead of time (AOT) or just in time (JIT), and the application model — single-activity lifecycle, sandboxed permissions, inter-process communication via Binder — is entirely Android's own.
This layering demonstrates a systems principle: platforms are not operating systems. An operating system manages hardware resources. A platform manages developer relationships, application distribution, and ecosystem governance. Android uses Linux as an operating system but is a platform in its own right, with its own rules, its own APIs, and its own power structure.
Open Source and the Governance Problem
Android is open source, released under the Apache License. The Android Open Source Project (AOSP) provides the base operating system that any manufacturer can use. But the open-source release is not the same as the Android that most users experience. Google's proprietary services — Google Play Services, the Google Play Store, Gmail, Maps — are not open source, and they are tightly integrated into the consumer Android experience.
The systems lesson is that open source does not imply open governance. AOSP is open in the sense that its source code is available. But its development is controlled by Google, its roadmap is determined by Google's strategic priorities, and its governance is not participatory in the way that Linux kernel development is. Manufacturers who use AOSP without Google's services — Amazon's Fire OS, for example — face a steep ecosystem penalty: they must build or substitute an entire application and services ecosystem.
This creates a two-tier Android ecosystem: the Google-sanctioned tier, with full access to the Play Store and Google services, and the AOSP-only tier, which is technically functional but commercially constrained. The division is not a technical one; it is a governance one. The question of whether Android is open depends on what you mean by open: open source, open governance, or open ecosystem. Android is the first but not the others.
Fragmentation as a Structural Feature
Android is famously fragmented. Thousands of device models run different versions of Android, with different hardware capabilities, different manufacturer customizations, and different security patch levels. This fragmentation is often treated as a failure of governance — evidence that Android's openness has been exploited by manufacturers who do not contribute back to the ecosystem.
But fragmentation is also a structural feature of Android's design. Android was built to be portable across hardware configurations. The HAL abstracts hardware differences, the ART runtime compiles applications to device-specific native code, and the Android framework provides APIs that hide hardware variation. This portability is a feature, not a bug. It enables the ecosystem diversity that Android's critics decry.
The systems insight: the same architectural decision that enables portability also enables fragmentation. You cannot have one without the other. Android's HAL and framework are designed to accommodate variation, and variation is what fragmentation is. The criticism of fragmentation is a criticism of Android's success in its original design goal: run on any hardware. The question is not how to eliminate fragmentation but how to manage it — how to provide security updates, API compatibility, and user experience consistency across a necessarily diverse hardware landscape.
The Security Model: Sandboxing and Permissions
Android's security model is based on application sandboxing: each application runs in its own process with its own user ID, and the Linux kernel enforces process isolation. Applications request permissions — access to camera, location, contacts — and the user grants or denies them. This model is elegant in theory but has accumulated complexity in practice.
The systems critique is that Android's permission model has not scaled with the application's role in the ecosystem. Early Android applications were discrete utilities: a camera app, a map app, a contact manager. Modern Android applications are platforms themselves: social media apps that access contacts, location, camera, microphone, and storage simultaneously; super-apps that bundle messaging, payments, and services. The permission model was designed for discrete utilities but is now applied to platforms, with the result that users face permission fatigue and apps request permissions that are technically separable but functionally inseparable.
The deeper systems lesson: security boundaries are context-dependent. A permission that is reasonable for one application architecture may be unreasonable for another. Android's security model assumes a static application architecture, but the architecture has evolved. The boundary between applications, once clear, has become porous as apps integrate services, embed web content, and communicate via deep links. The security model has not kept pace with the architectural change.
Android as Platform Sovereignty
Android's history is a case study in platform sovereignty: the power that accrues to the owner of a platform that society depends upon. Google controls Android's development, its services, and its certification. It does not control Android's use — AOSP is open source — but it controls the ecosystem that makes Android valuable. The power is not legal ownership but structural position: the platform owner is the gatekeeper of the ecosystem, and the gatekeeper's decisions determine who can participate and on what terms.
The systems lesson is that platform sovereignty is not monopoly in the traditional sense. Google does not prevent competitors from building mobile operating systems. But it does make competing extremely difficult by controlling the ecosystem that users and developers depend upon. The power is not the power to exclude but the power to set the terms of inclusion. This is a subtler form of power than the AT&T monopoly — it is not about controlling wires but about controlling the coordination system that wires enable.
Android is not a product. It is a platform, and platforms are not technologies. They are governance structures. The Android story is not about operating systems. It is about who controls the coordination system that billions of people use to connect, work, and live — and how that control is exercised through APIs, services, and ecosystem design rather than through legal ownership alone.