Presentation is loading. Please wait.

Presentation is loading. Please wait.

Android Access Control

Published bySuzan Pearson Modified over 6 years ago

Similar presentations

Presentation on theme: "Android Access Control"— Presentation transcript:

1 Prolog to Lecture 4 CS 236 On-Line MS Program Networks and Systems Security Peter Reiher

2 Android Access Control
Android is a software development environment for mobile devices Especially phones An open platform that allows adding arbitrary applications Written by many different parties What’s the appropriate access control model?

3 The Android Access Control Model
Linux is at the bottom If that were all, apps would run with permissions of user who ran them Above that, access control specific for Android Each application runs as its own Linux user But how to handle interactions between apps? Access to other apps’ components handled by Intercomponent Communications (ICC) controls

4 ICC Access Control Built into Android stack
So Android apps use it, but no regular app does ICC reference monitor provides a form of MAC Android apps built of components Each app component has an access label Developers assign apps sets of access labels Some for components in their own app Some for components of other apps Set defines an apps’ access domain

5 What Does This Mean? Application developer limits what his application can do Even if compromised, it can’t do more Permissions settable only at app installation Developer can also limit who else can use his components Preventing data leakage, for example

6 Some Advantages of This Approach
Limits power of applications Allows those installing applications to know what they can access Centralizes information about access permissions Extensions limit that somewhat

Download ppt "Android Access Control"

Similar presentations

Android Application Development A Tutorial Driven Course.

Android Application Development A Tutorial Driven Course.
Chapter 3 Multics. Chapter Overview Multics contribution to technology Multics History Multics System – Fundamentals – Security Fundamentals – Protection.

Chapter 3 Multics. Chapter Overview Multics contribution to technology Multics History Multics System – Fundamentals – Security Fundamentals – Protection.
MOOC on M4D 2013 I NTRODUCTION TO THE A NDROID P LATFORM Ashish Agrawal Indian Institute of Technology Kanpur.

MOOC on M4D 2013 I NTRODUCTION TO THE A NDROID P LATFORM Ashish Agrawal Indian Institute of Technology Kanpur.
Android Security. N-Degree of Separation Applications can be thought as composed by Main Functionality Several Non-functional Concerns Security is a non-functional.

Android Security. N-Degree of Separation Applications can be thought as composed by Main Functionality Several Non-functional Concerns Security is a non-functional.
Lecture 12 Page 1 CS 111 Online Devices and Device Drivers CS 111 On-Line MS Program Operating Systems Peter Reiher.

Lecture 12 Page 1 CS 111 Online Devices and Device Drivers CS 111 On-Line MS Program Operating Systems Peter Reiher.
Chung Man Ho Willims Chow Man Kei Gary Kwok Pak Wai Lion.

Chung Man Ho Willims Chow Man Kei Gary Kwok Pak Wai Lion.
Android An open handset alliance project Janice Garcia September 18, 2008 MIS 304.

Android An open handset alliance project Janice Garcia September 18, 2008 MIS 304.
Android Security Enforcement and Refinement. Android Applications --- Example Example of location-sensitive social networking application for mobile phones.

Android Security Enforcement and Refinement. Android Applications --- Example Example of location-sensitive social networking application for mobile phones.
Understanding Android Security Yinshu Wu William Enck, Machigar Ongtang, and PatrickMcDaniel Pennsylvania State University.

Understanding Android Security Yinshu Wu William Enck, Machigar Ongtang, and PatrickMcDaniel Pennsylvania State University.
Android and Eclipse Thaddeus Diamond CPSC 112. A Quick Introduction Eclipse is an IDE (Integrated Development Environment Open Source Much more full-featured.

Android and Eclipse Thaddeus Diamond CPSC 112. A Quick Introduction Eclipse is an IDE (Integrated Development Environment Open Source Much more full-featured.
Lecture 4 Page 1 CS 236 Online Prolog to Lecture 4 CS 236 On-Line MS Program Networks and Systems Security Peter Reiher.

Lecture 4 Page 1 CS 236 Online Prolog to Lecture 4 CS 236 On-Line MS Program Networks and Systems Security Peter Reiher.
Authors: William Enck The Pennsylvania State University Peter Gilbert Duke University Byung-Gon Chun Intel Labs Landon P. Cox Duke University Jaeyeon Jung.

Authors: William Enck The Pennsylvania State University Peter Gilbert Duke University Byung-Gon Chun Intel Labs Landon P. Cox Duke University Jaeyeon Jung.
NETWORK SERVERS Oliver Topping (with a little help from my Mum)

NETWORK SERVERS Oliver Topping (with a little help from my Mum)
Android for Java Developers Denver Java Users Group Jan 11, 2012 -Mike

Android for Java Developers Denver Java Users Group Jan 11, Mike
Mobile Device Programming

Mobile Device Programming
Lecture 19 Page 1 CS 236 Online 16. Account Monitoring and Control Why it’s important: –Inactive accounts are often attacker’s path into your system –Nobody’s.

Lecture 19 Page 1 CS 236 Online 16. Account Monitoring and Control Why it’s important: –Inactive accounts are often attacker’s path into your system –Nobody’s.
Android Security Model that Provide a Base Operating System Presented: Hayder Abdulhameed.

Android Security Model that Provide a Base Operating System Presented: Hayder Abdulhameed.
Android Security Extensions. Android Security Model Main objective is simplicity Users should not be bothered Does the user care? Most do not care…until.

Android Security Extensions. Android Security Model Main objective is simplicity Users should not be bothered Does the user care? Most do not care…until.
Lecture 16 Page 1 CS 236 Online Web Security CS 236 On-Line MS Program Networks and Systems Security Peter Reiher.

Lecture 16 Page 1 CS 236 Online Web Security CS 236 On-Line MS Program Networks and Systems Security Peter Reiher.
Introduction to Computer Operating Systems

Introduction to Computer Operating Systems

Similar presentations

Ads by Google