New ProviderInstaller in Google Play Services+Kenny Root
mentioned this in one of this posts:https://plus.google.com/+KennyRoot/posts/3X4vjGf4W9T
This kind of a big deal.
OpenSSL is a core library used to perform encrypted communications. It's actually part of the system image of every Android device, and used by any Android app that requires https.
Unfortunately, as part of the system image, the deployed OpenSSL will likely never see an update. Any security holes in OpenSSL will affect all apps running on that device, indefinitely.
ProviderInstaller basically fixes all that. GMS now ships with an up to date OpenSSL library, that is available to third party apps. Apps bind to the GMS library, and will favor that SSL stack instead of the system default. Any issues in OpenSSL can then be addressed with an update to GMS.
In addition, the SSLEngine implementation actually supports NPN/ALPN. Could write SPDY for AndroidAsync using this.