Android Security CS 4720 Mobile Application Development CS 4720 - - PowerPoint PPT Presentation

android security
SMART_READER_LITE
LIVE PREVIEW

Android Security CS 4720 Mobile Application Development CS 4720 - - PowerPoint PPT Presentation

Dec 23, 2022 489 likes •664 views

Android Security CS 4720 Mobile Application Development CS 4720 Security through Obscurity It used to be that phones had so little connectivity to devices other than the phone network that security wasn't a huge deal Phone number

slide-1
SLIDE 1

CS 4720

Android Security

CS 4720 – Mobile Application Development

slide-2
SLIDE 2

CS 4720

Security through Obscurity

  • It used to be that phones had so little

connectivity to devices other than the phone network that security wasn't a huge deal

  • Phone number stealing did occur
  • But nothing compared to what can happen

with today's smartphones!

2

slide-3
SLIDE 3

CS 4720

Encrypting Credentials

  • Create a configuration file for use of logging

into a web service or DB or whatever

  • Then encrypt that file with a

username/password combo that isn't stored anywhere on the device

  • For multiple users, add another layer – encrypt

a master password with a username/password combo that can unlock the configuration files

3

slide-4
SLIDE 4

CS 4720

Other “Good Things”

4

  • Encryption of data
  • SSL for connections
  • Input validation
  • Power-on password for the device
  • Everything else we discussed
slide-5
SLIDE 5

CS 4720

Mobile Remote Management

5

  • With an “always on” (theoretically) network

like a cellular network, remote enterprise management is an option

  • Can force:

– Policies (power on password, etc) – Password changes – Removal of all data through remote wipe

slide-6
SLIDE 6

CS 4720

Application Signing

  • Under “normal circumstances,” to run code on

a mobile device the following must be true:

– The executable files are “signed” – The signature is valid – The signature matches a recognized certificate on the device

  • Code signing ensures two things: the code

hasn't been modified and the owner is known

6

slide-7
SLIDE 7

CS 4720

Application Signing

7

  • Works similarly to public/private key signing

– On a compile, the code is hashed and encrypted with the private key of the author – The author's public key and info is attached to the code as a resource – At runtime, the mobile device gets the public key and decrypts the hash – Then it hashes the code and does a comparison – Finally, the public key is verified against the trust authorities certificate store

slide-8
SLIDE 8

CS 4720

Mobile Security Policy

8

  • Applications can be:

– Privileged: signed and verified in the cert store – Unprivileged : verified as unprivileged in the cert store – Unsigned: app not signed

  • And these apps can run:

– Trusted: consider this as running as root (almost) – Normal: API and Registry is severely restricted

slide-9
SLIDE 9

CS 4720

Changing Security Configurations

  • This is why you have to call

Verizon/Sprint/AT&T to get an “unlock code” for some phones

  • Some aspects are locked to the provider, even

if you own the phone!

9

slide-10
SLIDE 10

CS 4720

Android Security

  • “No application, by default, has permission to

perform any operations that would adversely impact other applications, the operating system, or the user.”

  • “This includes reading or writing the user's

private data (such as contacts or e-mails), reading or writing another application's files, performing network access, keeping the device awake, etc.”

10

slide-11
SLIDE 11

CS 4720

Android Security

  • Sandbox model
  • All apps run in their own sandbox
  • All potential permissions needed to exit the

sandbox must be statically declared at app install time

11

slide-12
SLIDE 12

CS 4720

Android Manifest Permissions

  • Network communication: view Wi-Fi state,

create Bluetooth connections, full Internet access, view network state

  • Your location: access extra location provider

commands, fine (GPS) location, mock location sources for testing, coarse (network-based) location

  • Services that cost you money: send SMS

messages, directly call phone numbers

12

slide-13
SLIDE 13

CS 4720

Android Application Signing

  • All .apk's (Android packages) must be signed by

the developer's private key stored on the local machine

  • A “default” keyset is generated when you

install the Android SDK

– It can be found in your .android directory – This can be used for development

  • When you publish your app, you must create

your own public key

13

slide-14
SLIDE 14

CS 4720

Android Application Signing

  • Google provides detailed steps on how to

create your own key

  • MAJOR POINT – Google / Android does NOT

require that your certificate / private key is verified by a certificate authority

  • This is called a “self-signed certificate”

14

slide-15
SLIDE 15

CS 4720

Self-Signing

  • What does it mean to have a self-signed

certificate?

  • How it affects apache / https
  • What are the potential risks to having a self-

signed certificate:

– For a server? – For an Android application?

  • This is very different than Apple's stance

15