understanding android s security framework
play

Understanding Androids Security Framework William Enck and Patrick - PowerPoint PPT Presentation

Oct 22, 2023 •314 likes •687 views

  1. �������฀฀���฀฀�������� ��������������฀�������� � � �������฀���฀��������฀��������฀������ ����������฀��฀��������฀�������฀���฀����������� ������������฀�����฀�����������฀����������฀����฀฀�� Understanding Android’s Security Framework William Enck and Patrick McDaniel Tutorial October 2008 Systems and Internet Infrastructure Security Laboratory (SIIS) Page 1

  2. Telecommunications Nets. • The telecommunications industry is in a period of transition to open handsets, open/augmented services and high-speed data. ‣ Openmoko ‣ LiMo ‣ Android • Idea : open platform to application developer ingenuity, will lead to new market drivers and differentiators. Systems and Internet Infrastructure Security Laboratory (SIIS) Page 2

  3. This tutorial • We are here to describe the security available in Android . • Goals ‣ Broadly catalog Android's application architecture ‣ Describe how security policy is defined within Android ‣ Describe the interfaces used to define policy ‣ Best practices for using those interfaces ‣ Show some pitfalls leading to insecure applications • We not here to teach you to build Android apps ... • Follow along at http://siis.cse.psu.edu/android_sec_tutorial.html Systems and Internet Infrastructure Security Laboratory (SIIS) Page 3

  4. What is Android? • One of the most anticipated smartphone operating systems -- led by Google ‣ Complete software stack ‣ Open source (Apache v2 license) ... mostly • Open Handset Alliance ... 30+ industrial partners ‣ Google, T -Mobile, Sprint, HTC, LG, Motorola, Samsung, Broadcom, Intent, NVIDIA, Qualcomm, and many more. Systems and Internet Infrastructure Security Laboratory (SIIS) Page 4

  5. History of Android • The Open Handset Alliance Vision (from their website) ‣ Open interfaces (dialer, SMS, ...) ‣ All applications are created equal ‣ Breaking down application boundaries ‣ Fast & easy application development • The “Google Phone” rumors go back to at least 2006 ‣ Google acquired Android, Inc. in July 2005 ‣ Nov. 2007 - initial SDK release (multiple revs: M3, M5, 0.9, 1.0) ‣ Sep. 2008 - T -Mobile announces G1 (available Oct. 2008) ‣ Oct. 2008 - Source code released (some Google apps omitted) Systems and Internet Infrastructure Security Laboratory (SIIS) Page 5

  6. Android Phones • An Android contains a number of “ applications ” ‣ Android comes installed with a number of basic systems tools, e.g., dialer, address book, etc. ‣ Developers use the Android API to construct applications. • All apps are written in Java and executed within a custom Java virtual machine. ‣ Each application package is contained in a jar file (.apk) • Applications are installed by the user ‣ No “app store” required, just build and go. ‣ Open access to data and voice services Systems and Internet Infrastructure Security Laboratory (SIIS) Page 6

  7. Architecture • The Android smartphone operating system is built upon Linux and includes many libraries and a core set of applications. • The middleware makes it interesting ‣ Not focused on UNIX processes ‣ Uses the Binder component framework • Originally part of BeOS, then enhanced Phone Contacts Maps by Palm, now used in Android Application Application Application ‣ Applications consist of many Reference Binder Monitor Android Middleware Component components of different types Framework Policy ‣ Applications interact via components Linux • We focus on security with respect to the component API Systems and Internet Infrastructure Security Laboratory (SIIS) Page 7

  8. Component Model • While each application runs as its own UNIX uid, sharing can occur through application-level interactions ‣ Interactions based on components ‣ Different component types • Activity • Service start/stop/bind start • Content Provider call Activity Activity Activity Service return • Broadcast Receiver callback Communicating with a Service Starting an Activity for a Result ‣ Target component in the same or different application Read/Write System Query Send Broadcast ‣ but first ... Content Activity Activity Intent Receiver Provider return Service Querying a Content Provider Receiving an Intent Broadcast Systems and Internet Infrastructure Security Laboratory (SIIS) Page 8

  9. Intents • Intents are objects used as inter-component signaling ‣ Starting the user interface for an application ‣ Sending a message between components ‣ Starting a background service Systems and Internet Infrastructure Security Laboratory (SIIS) Page 9

  10. Activity Component • The user interface consists of a series of Activity components. • Each Activity is a “screen”. • User actions tell an Activity to start another Activity, possibly with the expectation of a result . • The target Activity is not necessarily in the same application. • Directly or via Intent “action strings”. • Processing stops when another Activity is “on top”. Systems and Internet Infrastructure Security Laboratory (SIIS) Page 10

  11. Service Component • Background processing occurs in Service components. ‣ Downloading a file, playing music, tracking location, polling, etc. ‣ Local vs. Remote Services (process-level distinction) • Also provides a “service” interface between applications ‣ Arbitrary interfaces for data transfer Android Interface Definition Language (AIDL) • ‣ Register callback methods ‣ Core functionality often implemented as Service components e.g., Location API, Alarm service • • Multiple interfaces ‣ Control: start, stop ‣ Method invocation: bind Systems and Internet Infrastructure Security Laboratory (SIIS) Page 11

  12. Content Provider Component • Content Provider components provide a standardized interface for sharing data, i.e., content (between applications). • Models content in a relational DB ‣ Users of Content Providers can perform queries equivalent to SELECT, UPDATE, INSERT, DELETE ‣ Works well when content is tabular ‣ Also works as means of addressing “files” • URI addressing scheme content://<authority>/<table>/[<id>] ‣ content://contacts/people/10 ‣ Systems and Internet Infrastructure Security Laboratory (SIIS) Page 12

  13. Broadcast Receiver Component • Broadcast Receiver components act as specialized event Intent handlers (also think of as a message mailbox). • Broadcast Receiver components “ subscribe ” to specific action strings (possibly multiple) ‣ action strings are defined by the system or developer ‣ component is automatically called by the system • Recall that Android provides automatic Activity resolution using “action strings”. ‣ The action string was assigned to an Intent object ‣ Sender can specify component recipient (no action string) Systems and Internet Infrastructure Security Laboratory (SIIS) Page 13

  14. The Android Manifest • Manifest files are the technique for describing the contents of an application package (i.e., resource file) • Each Android application has a special AndroidManifest.xml file (included in the .apk package) ‣ describes the contained components • components cannot execute unless they are listed ‣ specifies rules for “auto-resolution” ‣ specifies access rules ‣ describes runtime dependencies ‣ optional runtime libraries ‣ required system permissions Systems and Internet Infrastructure Security Laboratory (SIIS) Page 14

  15. Manifest Specification Systems and Internet Infrastructure Security Laboratory (SIIS) Page 15

  16. Example Applications • FriendTracker Application FriendTracker Service to poll for friend locations ‣ Broadcasts an Intent when near a friend • FriendProvider Content Provider to store location of friends ‣ Cross references friends with system Contacts Provider • FriendTrackerControl Activity to start and stop the Service ‣ BootReceiver Broadcast Receiver to start the service on boot ‣ • FriendViewer Application FriendViewer Activity to display list of friend locations ‣ FriendMap Activity to show friends on a map (on right) ‣ FriendReceiver Broadcast Receiver to display when near ‣ • Available from http://siis.cse.psu.edu/android_sec_tutorial.html Systems and Internet Infrastructure Security Laboratory (SIIS) Page 16

  17. Component Interaction System Server Contacts Application ViewContact System Service Broadcast start Intent FriendTracker Application FriendViewer Application Broadcast Intent start BootReceiver FriendTracker FriendReceiver FriendMap start/stop read,write start read FriendTracker FriendViewer FriendProvider Control read Systems and Internet Infrastructure Security Laboratory (SIIS) Page 17

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Android Security Security Philosophy Humans have difficulty understanding risk Safer to

Android Security Security Philosophy Humans have difficulty understanding risk Safer to

Android Security Security Philosophy Humans have difficulty understanding risk Safer to assume that Most developers do not understand security Most users do not understand security Security philosophy cornerstones Need to

582 views • 37 slides
Fuzzing the Media Framework in Android Alexandru Blanda OTC Security QA 1 Agenda Introduction

Fuzzing the Media Framework in Android Alexandru Blanda OTC Security QA 1 Agenda Introduction

Fuzzing the Media Framework in Android Alexandru Blanda OTC Security QA 1 Agenda Introduction Fuzzing Media Content in Android Data Generation Fuzzing the Stagefright Framework Logging &amp; Triage Mechanisms 2 Introduction Fuzzing

1.12k views • 38 slides
Security Enhanced (SE) Android: Bringing Flexible MAC to Android Stephen Smalley and Robert Craig

Security Enhanced (SE) Android: Bringing Flexible MAC to Android Stephen Smalley and Robert Craig

Security Enhanced (SE) Android: Bringing Flexible MAC to Android Stephen Smalley and Robert Craig Trusted Systems Research National Security Agency Motivation Android security relies on Linux DAC. To protect the system from apps. To

480 views • 21 slides
To Towards(Understanding(Android(System( Vu Vulnerabilities:( Te Techniques(and(Insights(

To Towards(Understanding(Android(System( Vu Vulnerabilities:( Te Techniques(and(Insights(

ACM#Asia#Conf.#on#Comp.#and#Comm.#Security#( AsiaCCS ),#Auckland,#Jul#2019# To Towards(Understanding(Android(System( Vu Vulnerabilities:( Te Techniques(and(Insights( Daoyuan'Wu 1 ,#Debin Gao 1 ,#Eric#K.#T.#Cheng 2 ,# Yichen Cao 3

332 views • 21 slides
Kratos: Discovering Inconsistent Security Policy Enforcement in the Android Framework Yuru Shao ,

Kratos: Discovering Inconsistent Security Policy Enforcement in the Android Framework Yuru Shao ,

Kratos: Discovering Inconsistent Security Policy Enforcement in the Android Framework Yuru Shao , Jason Ott , Qi Alfred Chen, Zhiyun Qian , Z. Morley Mao University of Michigan, University of California Riverside 1 Security Policy

888 views • 22 slides
Security &amp; Pie Android 9.0 &amp; APK Security Plan of Attack Start at the hardware

Security &amp; Pie Android 9.0 &amp; APK Security Plan of Attack Start at the hardware

Security &amp; Pie Android 9.0 &amp; APK Security Plan of Attack Start at the hardware Work up to Android OS Climb into the Play Store Discuss Application (APK) Connor Tumbleson Senior Software Engineer @Sourcetoad

672 views • 56 slides
The Android media framework Author: Bert Van Dam &amp; Poornachandra Kallare Date: 22 April

The Android media framework Author: Bert Van Dam &amp; Poornachandra Kallare Date: 22 April

Android builders summit The Android media framework Author: Bert Van Dam &amp; Poornachandra Kallare Date: 22 April 2014 Usage models Use the framework: MediaPlayer android.media.MediaPlayer Framework manages Demuxing

772 views • 31 slides
File format fuzzing in Android: Giving Stagefright to the Android installer Alexandru Blanda

File format fuzzing in Android: Giving Stagefright to the Android installer Alexandru Blanda

File format fuzzing in Android: Giving Stagefright to the Android installer Alexandru Blanda Intel OTC Security SQE Agenda File format fuzzing in Android Fuzzing the Stagefright media framework Fuzzing the Android application

614 views • 40 slides
CS 403X Mobile and Ubiquitous Computing Lecture 3: Android UI, WebView, Android Activity Lifecycle

CS 403X Mobile and Ubiquitous Computing Lecture 3: Android UI, WebView, Android Activity Lifecycle

CS 403X Mobile and Ubiquitous Computing Lecture 3: Android UI, WebView, Android Activity Lifecycle Emmanuel Agu Android Software Framework Android Software Framework Multi user Linux system Each Android app is a different Linux user

924 views • 71 slides
The heavy metal that poisoned the droid Tyrone Erasmus Introduction Android Security Model

The heavy metal that poisoned the droid Tyrone Erasmus Introduction Android Security Model

The heavy metal that poisoned the droid Tyrone Erasmus Introduction Android Security Model Static vs. Dynamic analysis Mercury: New framework on the block Finding OEM problems Techniques for malware How do we fix this?

576 views • 56 slides
Runtime verification meets Android security Gil Vegliach Joint work with Andreas Bauer and

Runtime verification meets Android security Gil Vegliach Joint work with Andreas Bauer and

Runtime verification meets Android security Gil Vegliach Joint work with Andreas Bauer and Jan-Christoph K uster Background, what Android is Developed by Android Inc. (acquired by Google in 2005) Open Handset Alliance (founded in 2007)

161 views • 15 slides
Deep Dive into Android IPC/Binder Framework at Android Builders Summit 2013 Aleksandar (Saa)

Deep Dive into Android IPC/Binder Framework at Android Builders Summit 2013 Aleksandar (Saa)

Deep Dive into Android IPC/Binder Framework at Android Builders Summit 2013 Aleksandar (Saa) Gargenta, Marakana Inc. 2013 Marakana, Inc., Creative Commons (Attribution, NonCommercial, ShareAlike) 3.0 License Last Updated: 2013-02-19 Why are

1.28k views • 60 slides
Evaluating the Android Security Key Scheme: An Early Usability, Deployability, Security

Evaluating the Android Security Key Scheme: An Early Usability, Deployability, Security

Evaluating the Android Security Key Scheme: An Early Usability, Deployability, Security Evaluation with Comparative Analysis Robbie MacGregor 5 th Who Are You?! Adventures in Authentication (WAY), Santa Clara, CA, USA, 2019. I did a thing so

132 views • 10 slides
Cyber Security Risk Using the Cyber Security Measurement Framework Cyber Security Framework

Cyber Security Risk Using the Cyber Security Measurement Framework Cyber Security Framework

Cyber Security Risk Using the Cyber Security Measurement Framework Cyber Security Framework Reporting Objectives Executive Summary Information Assess Current Cyber Security Posture Measure Progress Toward Improvement Assess

634 views • 5 slides
Understanding the Characteristics of Android Wear OS Renju Liu and Felix Xiaozhu Lin Purdue ECE

Understanding the Characteristics of Android Wear OS Renju Liu and Felix Xiaozhu Lin Purdue ECE

Understanding the Characteristics of Android Wear OS Renju Liu and Felix Xiaozhu Lin Purdue ECE The Wearable stack 5 Top questions Wearables should enjoy Baremetal performance Baremetal efficiency In this talk: Android Wear

686 views • 47 slides
Security Enhancements (SE) for Android Stephen Smalley Trusted Systems Research Natjonal

Security Enhancements (SE) for Android Stephen Smalley Trusted Systems Research Natjonal

Security Enhancements (SE) for Android Stephen Smalley Trusted Systems Research Natjonal Security Agency CLASSIFICATION HEADER Agenda Motjvatjon/Background Current State Using SELinux in Android What's Next for SELinux in

762 views • 72 slides
Interdomain Routing Policies in the Wild Ruwaifa Anwar 1 , Haseeb Niaz 1 , David Choffnes 2 ,

Interdomain Routing Policies in the Wild Ruwaifa Anwar 1 , Haseeb Niaz 1 , David Choffnes 2 ,

Investigating Interdomain Routing Policies in the Wild Ruwaifa Anwar 1 , Haseeb Niaz 1 , David Choffnes 2 , Italo Cunha 3 , Phillipa Gill 1 , Ethan Katz-Bassett 4 1 Stony Brook University, 2 Northeastern University, 3 Universidade Federal de Minas

363 views • 11 slides
Special Open Door Forum (SODF) #3 Documentation Requirement Lookup Service Melanie Combs-Dyer

Special Open Door Forum (SODF) #3 Documentation Requirement Lookup Service Melanie Combs-Dyer

Special Open Door Forum (SODF) #3 Documentation Requirement Lookup Service Melanie Combs-Dyer Director, Provider Compliance Group (PCG), Center for Program Integrity (CPI), CMS Ashley Stedding Management and Program Analyst, PCG, CPI, CMS

478 views • 20 slides
1 Slashdot Effect 2 Existing Commerical CDNs 3 Build your own solution Expensive to set

1 Slashdot Effect 2 Existing Commerical CDNs 3 Build your own solution Expensive to set

1 Slashdot Effect 2 Existing Commerical CDNs 3 Build your own solution Expensive to set up Only cost effective at massive scale Purchase from provider Expensive Requires prior knowledge of demand Existing Free CDNs 4

557 views • 21 slides
The Impact of Brokers on the Future of Content Delivery Matthew K. Mukerjee , I. Nadi Bozkurt,

The Impact of Brokers on the Future of Content Delivery Matthew K. Mukerjee , I. Nadi Bozkurt,

The Impact of Brokers on the Future of Content Delivery Matthew K. Mukerjee , I. Nadi Bozkurt, Bruce Maggs, Srinivasan Seshan, Hui Zhang Hi, my name is Matt Mukerjee and Ill be presenting our work on The Impact of Brokers on the Future of

919 views • 50 slides
Does restricting P2P limit speech? Or access to lawful content and services? Any content or

Does restricting P2P limit speech? Or access to lawful content and services? Any content or

Does restricting P2P limit speech? Or access to lawful content and services? Any content or service deliverable via P2P is also deliverable via other means Therefore, if content is inaccessible, it is not the fault of an ISP who blocks P2P

398 views • 4 slides
Android: Content Providers

Android: Content Providers

Android: Content Providers -

943 views • 63 slides
Lecture 08 Android Permissions Demystified Adrienne Porter Felt, Erika Chin, Steve Hanna, Dawn

Lecture 08 Android Permissions Demystified Adrienne Porter Felt, Erika Chin, Steve Hanna, Dawn

Lecture 08 Android Permissions Demystified Adrienne Porter Felt, Erika Chin, Steve Hanna, Dawn Song, David Wagner Operating Systems Practical 20 November, 2013 OSP Lecture 08, Android Permissions Demystified 1/42 Introduction Android

894 views • 42 slides
Evaluating the Content and Quality of Next Generation Assessments Nancy Doorey Morgan Polikoff

Evaluating the Content and Quality of Next Generation Assessments Nancy Doorey Morgan Polikoff

Evaluating the Content and Quality of Next Generation Assessments Nancy Doorey Morgan Polikoff February 11, 2016 Study Overview This study evaluates the content and quality of assessments for grades 5 and 8 (capstone grades for

581 views • 35 slides

More recommend