Presentation is loading. Please wait.

Presentation is loading. Please wait.

Lecture 4 Page 1 CS 236 Online Prolog to Lecture 4 CS 236 On-Line MS Program Networks and Systems Security Peter Reiher.

Published byBarry Tucker Modified over 8 years ago

Similar presentations

Presentation on theme: "Lecture 4 Page 1 CS 236 Online Prolog to Lecture 4 CS 236 On-Line MS Program Networks and Systems Security Peter Reiher."— Presentation transcript:

1 Lecture 4 Page 1 CS 236 Online Prolog to Lecture 4 CS 236 On-Line MS Program Networks and Systems Security Peter Reiher

2 Lecture 4 Page 2 CS 236 Online Android Access Control Android is a software development environment for mobile devices –Especially phones An open platform that allows adding arbitrary applications –Written by many different parties What’s the appropriate access control model?

3 Lecture 4 Page 3 CS 236 Online The Android Access Control Model Linux is at the bottom –If that were all, apps would run with permissions of user who ran them Above that, access control specific for Android Each application runs as its own Linux user –But how to handle interactions between apps? Access to other apps’ components handled by Intercomponent Communications (ICC) controls

4 Lecture 4 Page 4 CS 236 Online ICC Access Control Built into Android stack –So Android apps use it, but no regular app does ICC reference monitor provides a form of MAC Android apps built of components –Each app component has an access label Developers assign apps sets of access labels –Some for components in their own app –Some for components of other apps –Set defines an application’s access domain

5 Lecture 4 Page 5 CS 236 Online What Does This Mean? Application developer limits what his application can do –Even if compromised, it can’t do more –Permissions settable only at app installation Developer can also limit who else can use his components –Preventing data leakage, for example

6 Lecture 4 Page 6 CS 236 Online Some Advantages of This Approach Limits power of applications Allows those installing applications to know what they can access Centralizes information about access permissions –Extensions limit that somewhat

Download ppt "Lecture 4 Page 1 CS 236 Online Prolog to Lecture 4 CS 236 On-Line MS Program Networks and Systems Security Peter Reiher."

Similar presentations

Chapter 3 Multics. Chapter Overview Multics contribution to technology Multics History Multics System – Fundamentals – Security Fundamentals – Protection.

Chapter 3 Multics. Chapter Overview Multics contribution to technology Multics History Multics System – Fundamentals – Security Fundamentals – Protection.
MOOC on M4D 2013 I NTRODUCTION TO THE A NDROID P LATFORM Ashish Agrawal Indian Institute of Technology Kanpur.

MOOC on M4D 2013 I NTRODUCTION TO THE A NDROID P LATFORM Ashish Agrawal Indian Institute of Technology Kanpur.
Lecture 12 Page 1 CS 111 Online Devices and Device Drivers CS 111 On-Line MS Program Operating Systems Peter Reiher.

Lecture 12 Page 1 CS 111 Online Devices and Device Drivers CS 111 On-Line MS Program Operating Systems Peter Reiher.
Unit 6- Operating Systems.  Identify the purpose of an OS  Identify different operating systems  Describe computer user interaction with multiple operating.

Unit 6- Operating Systems.  Identify the purpose of an OS  Identify different operating systems  Describe computer user interaction with multiple operating.
Security of Mobile Applications Vitaly Shmatikov CS 6431.

Security of Mobile Applications Vitaly Shmatikov CS 6431.
Location Aware Social Network Group 2 CS 8803. Team Introduction Prasun Johari M.S. ECE Ankur Aggarwal M.S. CS Gurlal Kahlon M.S. CS Shobith Alva M.S.

Location Aware Social Network Group 2 CS Team Introduction Prasun Johari M.S. ECE Ankur Aggarwal M.S. CS Gurlal Kahlon M.S. CS Shobith Alva M.S.
Android An open handset alliance project Janice Garcia September 18, 2008 MIS 304.

Android An open handset alliance project Janice Garcia September 18, 2008 MIS 304.
Professor Michael J. Losacco CIS 1150 – Introduction to Computer Information Systems System Software Chapter 4.

Professor Michael J. Losacco CIS 1150 – Introduction to Computer Information Systems System Software Chapter 4.
Android Security Enforcement and Refinement. Android Applications --- Example Example of location-sensitive social networking application for mobile phones.

Android Security Enforcement and Refinement. Android Applications --- Example Example of location-sensitive social networking application for mobile phones.
Understanding Android Security Yinshu Wu William Enck, Machigar Ongtang, and PatrickMcDaniel Pennsylvania State University.

Understanding Android Security Yinshu Wu William Enck, Machigar Ongtang, and PatrickMcDaniel Pennsylvania State University.
A METHODOLOGY FOR EMPIRICAL ANALYSIS OF PERMISSION-BASED SECURITY MODELS AND ITS APPLICATION TO ANDROID.

A METHODOLOGY FOR EMPIRICAL ANALYSIS OF PERMISSION-BASED SECURITY MODELS AND ITS APPLICATION TO ANDROID.
Lesson 8 Operating Systems

Lesson 8 Operating Systems
Authors: William Enck The Pennsylvania State University Peter Gilbert Duke University Byung-Gon Chun Intel Labs Landon P. Cox Duke University Jaeyeon Jung.

Authors: William Enck The Pennsylvania State University Peter Gilbert Duke University Byung-Gon Chun Intel Labs Landon P. Cox Duke University Jaeyeon Jung.
Automatic Software Testing Tool for Computer Networks ADD Presentation Dudi Patimer Adi Shachar Yaniv Cohen www.cs.bgu.ac.il/~adishach.

Automatic Software Testing Tool for Computer Networks ADD Presentation Dudi Patimer Adi Shachar Yaniv Cohen
NETWORK SERVERS Oliver Topping (with a little help from my Mum)

NETWORK SERVERS Oliver Topping (with a little help from my Mum)
Android Platform. Course Instructor Yourself? Lectures, Labs, Text-Book Moodle Course Syllabus Online Resources Assessment Deadlines Code of professional.

Android Platform. Course Instructor Yourself? Lectures, Labs, Text-Book Moodle Course Syllabus Online Resources Assessment Deadlines Code of professional.
Mobile Application Development using Android Lecture 2.

Mobile Application Development using Android Lecture 2.
Lecture 16 Page 1 Advanced Network Security Perimeter Defense in Networks: Virtual Private Networks Advanced Network Security Peter Reiher August, 2014.

Lecture 16 Page 1 Advanced Network Security Perimeter Defense in Networks: Virtual Private Networks Advanced Network Security Peter Reiher August, 2014.
Lecture 13 Page 1 CS 236 Online Secure Programming CS 236 On-Line MS Program Networks and Systems Security Peter Reiher.

Lecture 13 Page 1 CS 236 Online Secure Programming CS 236 On-Line MS Program Networks and Systems Security Peter Reiher.
Lecture 19 Page 1 CS 236 Online 16. Account Monitoring and Control Why it’s important: –Inactive accounts are often attacker’s path into your system –Nobody’s.

Lecture 19 Page 1 CS 236 Online 16. Account Monitoring and Control Why it’s important: –Inactive accounts are often attacker’s path into your system –Nobody’s.

Similar presentations

Ads by Google