Weekly Edition
Return to the Security page
| |||||||||||||
Android Security Overview
The Android project has published an Android Security
Overview that provides information about Android security at the system
and kernel level as well as application security and more. "This document outlines the goals of the Android security program, describes the fundamentals of the Android security architecture, and answers the most pertinent questions for system architects and security analysts. This document focuses on the security features of Android's core platform and does not discuss security issues that are unique to specific applications, such as those related to the browser or SMS application. Recommended best practices for building Android devices, deploying Android devices, or developing applications for Android are not the goal of this document and are provided elsewhere."
(Log in to post comments)
Old news Posted Jul 17, 2012 23:00 UTC (Tue) by cesarb (subscriber, #6266) [Link]
That page has existed for some time. The source.android.com site has a git repository at https://android.googlesource.com/platform/docs/source.and..., where you can see that page was created last year.
Android Security Overview Posted Jul 18, 2012 6:59 UTC (Wed) by liam (subscriber, #84133) [Link]
I'm only around a fifth of the page down, but if what it says is true, Miller shouldn't have been able to deploy a zero permission app that moved out of its sandbox.
I'd like to see more exploration of the NSA SEAndroid project. Other than its announcement in Jan I've heard exactly nothing about it. In particular I'd like to know if the overhead is too onerous for a mobile environment.
Android Security Overview Posted Jul 18, 2012 12:37 UTC (Wed) by mariuz (guest, #24892) [Link]
Another interesting article is related to address randomisation
Via the open-h
and the text of the full article
|
|||||||||||||