How Spectre security patches shall affect mobile development

JetStream running on iOS 11.2.1 vs 11.2.2
Spectre vulnerability

Apple released iOS 11.2.2 update, they fixed Spectre vulnerability.
Google patched many devices running ChromeOS and soon shall fix missing models.
Also Chrome for Android should be already patched, the same for the underlying WebView component.

What's about JavaScript performances?

It seems that the most affected components are the web browsing and rendering engines which lost some speed: that's a topic we're really interested about.

We did tests using Octane 2.0 and JetStream and removing "mandreel*" from benchmarks: such tests are hanging on iOS 11.2.2 so we decided to completely remove them from the run.

JetStream running on iOS 11.2.1 vs 11.2.2
Excerpt from our tests: JetStream running on iOS 11.2.1 vs 11.2.2

 

Mean performances' decrease is about 13% on both Webkit (iOS) and Chromium based engines (ChromeOS, Android).
New engines seems to improve encryption capability and are much slower while manipulating big quantity of dynamic objects: good for security and bad for applications with many data.

Now it should be clear and clearer: the best way to develop mobile applications is using native languages.

Even if we're actively supporting non-native development tools in our RadaeePDF SDK, I can say: let avoid tools like Cordova and similar scripting engines which bring poor responsiveness and bad user experiences to your customers.
If you're approaching the development of new mobile projects, better if you evaluate to adopt Objective-C, Swift, Java or Kotlin.

 

 

Objective-C
Java
Swift
Kotlin

 

If you would like to discuss about the article or receive details about our benchmarks, contact us on our socials (LinkedIn and Facebook) or fill the form.