ANDROID™ OS Security A brief synopsis of the Android Operating System and its security. By Daniel Angelis.

Slides:



Advertisements
Similar presentations
November 1, 2004Introduction to Computer Security ©2004 Matt Bishop Slide #12-1 Chapter 12: Design Principles Overview Principles –Least Privilege –Fail-Safe.
Advertisements

MOOC on M4D 2013 I NTRODUCTION TO THE A NDROID P LATFORM Ashish Agrawal Indian Institute of Technology Kanpur.
A METHODOLOGY FOR EMPIRICAL ANALYSIS OF PERMISSION-BASED SECURITY MODELS AND ITS APPLICATION TO ANDROID David Barrera, H. Güne¸s Kayacık, P.C. van Oorschot,
1 Design Principles CSSE 490 Computer Security Mark Ardis, Rose-Hulman Institute April 13, 2004.
DEPARTMENT OF COMPUTER ENGINEERING
Security in By: Abdulelah Algosaibi Supervised by: Prof. Michael Rothstein Summer II 2010: CS 6/79995 Operating System Security.
(Breather)‏ Principles of Secure Design by Matt Bishop (augmented by Michael Rothstein)‏
With Emma Goodwin Fall In July 2005, Google bought a small startup company called Android Inc. At the time, Android was vaguely described as a company.
Mobile Application Development
Android is a mobile operating system developed by Google and is based upon the Linux kernel and GNU software. It was initially developed by Android.
Lu Cheng (l ). Power Consuming Services Android and iPhone support energy hungry network services 2G/3G: the two-way radio system for long range.
Android An open handset alliance project Janice Garcia September 18, 2008 MIS 304.
Case study 2 Android – Mobile OS.
© by Pearson Education, Inc. All Rights Reserved. 1 Introduction to Android From “Android: How to Program” By Paul Deitel and Harvey Deitel.
Mobile Application Development with ANDROID. Agenda Mobile Application Development (MAD) Intro to Android platform Platform architecture Application building.
A METHODOLOGY FOR EMPIRICAL ANALYSIS OF PERMISSION-BASED SECURITY MODELS AND ITS APPLICATION TO ANDROID.
@2011 Mihail L. Sichitiu1 Android Introduction Platform Overview.
Presentation Seminar on “IMAGE SLIDER –AN ANDROID APPLICATION”
Mobile Device Security
#gsa2012 Android Basics By: Amr Mohsen
© by Pearson Education, Inc. All Rights Reserved. 1 Introduction to Android From “Android: How to Program” By Paul Deitel and Harvey Deitel.
Presentation on android based application
Android Security Auditing Slides and projects at samsclass.info.
Android Security Model that Provide a Base Operating System Presented: Hayder Abdulhameed.
Android Declassification Infrastructure Matan David Yuval Evron Project Advisor: Roei Schuster 1.
ANDROID BY:-AANCHAL MEHTA MNW-880-2K11. Introduction to Android Open software platform for mobile development A complete stack – OS, Middleware, Applications.
Android Overview History and architecture. Brief History 1996 The WWW already had websites with color and images But, the best phones displayed a couple.
Mobile Application Security on Android Originally presented by Jesse Burns at Black Hat
Android History.
2011 Calendar Important Dates/Events/Homework. SunSatFriThursWedTuesMon January
Fall 2008CS 334: Computer SecuritySlide #1 Design Principles Thanks to Matt Bishop.
June 1, 2004Computer Security: Art and Science © Matt Bishop Slide #13-1 Chapter 13: Design Principles Overview Principles –Least Privilege –Fail-Safe.
By, Rutika R. Channawar. Content Introduction Open Handset Alliance Minimum Hardware Requirements Versions Feature Architecture Advantages Disadvantages.
The Whole new Experience - By Mahesh Chauhan. Its sounds strange but the fact is that :-  More than 90% of the CPUs in the world are not in desktops.
LINUX Presented By Parvathy Subramanian. April 23, 2008LINUX, By Parvathy Subramanian2 Agenda ► Introduction ► Standard design for security systems ►
1 Android Workshop Platform Overview. 2 What is Android?  Android is a software stack for mobile devices that includes an operating system, middleware.
Android Development For Beginners. What is Android? Android is an open mobile phone platform that was developed by Google and later by Open Handset Alliance.
By : Abhishek Verma Main Topics : 1. Introduction 2. Platform 3. Software Development 4. Overall Evaluation.
Android. I. What’s Android Android is a mobile operating system (OS) based on the Linux kernel and currently developed by Google. Android is designed.
By: Dylan Small.  History of Android  Android Versions  Technical Specs  New/Current Versions  Future of Android  Summary Road Map.
By: Collin Molnar. Overview  Intro to Android  Security basics  Android architecture  Application isolation  Application permissions  Physical access.
June 1, 2004© Matt Bishop [Changed by Hamid R. Shahriari] Slide #13-1 Chapter 13: Design Principles Overview Principles –Least Privilege –Fail-Safe.
Slide #13-1 Design Principles CS461/ECE422 Computer Security I Fall 2008 Based on slides provided by Matt Bishop for use with Computer Security: Art and.
Software Security II Karl Lieberherr. What is Security Enforcing a policy that describes rules for accessing resources. Policy may be explicit or implicit.
Java & The Android Stack: A Security Analysis Pragati Ogal Rai Mobile Technology Evangelist PayPal, eBay Java.
ANDROID OS Ravi Soni MTech (CS) III Sem. W HAT IS A NDROID ? Android is a software stack for mobile devices that includes an operating system, middleware.
The Ingredients of Android Applications. A simple application in a process In a classical programming environment, the OS would load the program code.
Android. Android An Open Handset Alliance Project A software platform and operating system for mobile devices Based on the Linux kernel Developed by Google.
Presented by: Saurabh Kumar Sinha (MRT07UGBIT 186) IT VII Semester, Shobhit University Meerut.
A brief information about the Android Operating System
Workshop by T.Naveen sai kumar.
Advanced OS Topics Mobile OS and Distributed Systems Android OS
Introduction To Android Programming
ANDROID AN OPEN HANDSET ALLIANCE PROJECT
chapter 6- Android Introduction
ANDROID AND ANDROID PHONES
Android.
Software Security II Karl Lieberherr.
Operating System.
Android Versions’ Relative Distribution
Contents: Introduction Different Mobile Operating Systems
CIS 470 Mobile App Development
By Filip Tyrala, Jack Wright, Jennifer Nolan
ANDROID AND ANDROID PHONES
Protection and Security
February 2007 Note: Source:.
Korea Software HRD Center
Design Principles Thanks to Matt Bishop 2006 CS 395: Computer Security.
2015 January February March April May June July August September
Mobile, Distributed, and Secure Systems and Applications
Presentation transcript:

ANDROID™ OS Security A brief synopsis of the Android Operating System and its security. By Daniel Angelis

The ANDROID™ OS History Google acquires mobile software startup Android™ in 2005 Open Handset Alliance officially starts on November 5 th, 2007 Android™ 1.0 source and SDK released in Fall 2008 (

The ANDROID™ OS Versions 1.1 February (Cupcake) April (Donut) September /2.1 (Éclair) October (Froyo) May (Gingerbread) Not expected before Q4 2010

The ANDROID™ OS System Architecture Linux Version 2.6 Davlik Virtual Machine (VM) Application Framework

The ANDROID™ OS Applications Applications are Java Applications are run on Davlik Virtual Machine Development done by Android™ SDK Development is open to all User driven Android™ Market

ANDROID™ Security Security triad applicability Confidentiality Integrity Availability

ANDROID™ Security Android Security Relies on security of it’s foundations; Linux, Davlik, and Java. Security Goal: “A central design point of the Android security architecture is that no application, by default, has permission to perform any operations that would adversely impact other applications, the operating system, or the user.”

ANDROID™ Security Enforcement strategy Application signing and certification. Linux user name base access restriction Capability permissions

ANDROID™ Security Application Sandboxes All Applications run as their own Linux user. Several Inter-Process Communication methods: –Activities –Services –BroadcastReceiver –ContentProvider –Intent Applications utilize a capability like model to protect the system and the user.

ANDROID™ Security Android™ Capabilities and Permissions Capabilities default to safe state Must be explicitly defined to enable capabilities Permissions are static on install Users have open view of permissions

ANDROID™ Security

ANDROID™ Security Security Concerns for developers Protect your application, use least privilege principle. If you expose, mediate IPCs Provide maximum availability –Minimize memory footprint –Minimize battery usage

ANDROID™ Security Security Concerns for users Do your research –Read reviews. –Analyze capabilities/permissions before installing. –Use Common sense. – ding-the-android-market-security-system/

ANDROID™ Security Security Analysis Mediation Verifiability Integrity of TCB

ANDROID™ Security Principles of Secure Design –Least Privilege –Fail Safe Defaults –Economy of Mechanism –Complete Mediation –Defense in depth –Open Design –Separation of Privilege –Least Common Mechanism –Psychological Acceptability

Conclusion Secure architecture Reliance on trust As with all things, use your head.

References Portions of this presentation are reproduced from work created and shared by Google and used according to terms described in the Creative Commons 3.0 Attribution License.shared by GoogleCreative Commons 3.0 Attribution License Android Developers, “Security and Permissions.” developer.androide.com. 26 July Web. 27 July 2010 Burns, Jesse. “Mobile Application Security on Android.” blackhat.com. June Web. 27 July Android (operating system) Wiki. Elgin, Ben. “Google Buys Android for Its Mobile Arsenal”. businessweek.com. 17 August Web. 27 July 2010.

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.