ANDROID SECURITY

Presented By: Hitesh Tandel (095310693030) Mayank Modi (095310693057)

OVERVIEW
1. What Is Android ? 2. Why care about mobile security ? 3. Android Security Architecture 4. System And Kernel Level

1. WHAT IS ANDROID ?
The Android operating system was originally developed by Android Inc A small company that was purchased by Google in July of 2005. Android is both a platform and an operating system. By using Java, Google hopes to make Android development more accessible and easier to participate in. it provide base operation system, application middleware layer, Java software development kit and a collection of system applications.

2. Why

care about mobile security ?

3. ANDROID SECURITY ARCHITECTURE

Architecture
It

is a software stack which performs several. The Linux kernel is the base of the software stack.
Core Java libraries are on the same level as other libraries. The virtual machine called the Dalvik Virtual Machine is on this layer as well. The application framework is the next level.

LINUX KERNEL
Linux Version 2.6 as - h/w abstraction layer Proven driver model Security, Memory & Process Management Efficient computing resource management Stable and proven for mobile platform

MIDDLEWARE

Dalvik VM is not a security boundary

No security manager Permissions are enforced in OS and not in VM Bytecode verification for optimization Native vs. Java code

BINDER COMPONENT FRAMEWORK

BeOS, Palm, Android Applications are made of various components Applications interact via components

APPLICATION LAYER
Permissions restrict component interaction Permission labels defined inAndroidManifest.xml MAC enforced by Reference Monitor PackageManager and ActivityManager enforce permissions

COMPONENTS
Activity: An activity is needed to create a screen for a user application. Intent: Intents are used to transfer control from one activity to another. Service: It doesn't need a user interface. It continues running in the background with other processes run in the foreground. Broadcast Receiver: Mailbox for messages from other applications Content Provider: This component allows the application to share information with other applications.

4. SYSTEM AND KERNEL LEVEL

Linux Security

Keywords.

The Application Sandbox

Keywords.

4. SYSTEM AND KERNEL LEVEL ( CONT)

System Partition And Safe Mode

Keywords.

File System Permission

Keywords.

4. SYSTEM AND KERNEL LEVEL ( CONT)

File System Encryption

Keywords.

Password Protection

Keywords.

4. SYSTEM AND KERNEL LEVEL ( CONT)

Device Administration

Memory Management Security Enhancement

Rooting Of Devices

5. ANDROID APPLICATION SECURITY

Elements Of Application

Android Manifeat.xml

Intent

Keywords.

5. ANDROID APPLICATION SECURITY ( CONTI)

Activities

Broadcast Receiver

Service

THANK YOU.. !!