Abstract

New technologies have always created new areas of concern for information security teams. Usually it provides time for the development of effective security controls. The rapid growth of the smartphone in market and the use of these devices for so many sensitive data have led to the emergence of security threat. A malicious user or malware on a device can create a number of risks for an organization, and so the fact that these devices are not necessarily connected does not translate to a lack of security risks. This paper will discuss why it is important to secure an Android device, what some of the potential vulnerabilities are, and security measures that can be introduced to provide a baseline of security of data on Google’s mobile OS

Highlights

  • Android is a mobile platform which enables application development while making use of local as well as server side data using advanced hardware and software

  • Android provides the security of Linux kernel at the operating system level as well as a secure inter-process communication (IPC) facility to enable secure communication between applications running in different processes

  • The Android system assigns a unique user ID (UID) to each Android application and runs it as that user in a separate process. This approach is different from other operating systems, where multiple applications run with the same user permissions

Read more

Summary

INTRODUCTION

Android is a mobile platform which enables application development while making use of local as well as server side data using advanced hardware and software. The great design of Android was done with device users in mind They have been provided visibility that how applications work, and control over those applications. This document shows the goals of the Android security program, describes the Android security architecture as much as possible, and answers the most pertinent questions. It focuses on the security related features of Android's core platform and does not include security issues that are unique to specific applications, for example related to the browser or SMS application. Recommended best practices for building Android devices, deploying Android devices, or developing applications for Android are not the goal of this document at all

ANDROID PLATFORM MAIN BUILDING BLOCKS
Android Security Program Overview
SYSTEM AND KERNEL LEVEL SECURITY
Linux Security
The Application Sandbox
Filesystem Permissions
Filesystem Encryption
Password Protection
Device Administration
Credential Storage
Elements of Applications
Accessing Protected APIs
Interprocess Communication
Application Signing
Application Verification
CONCLUSION

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Similar Papers

Paper Title
Journal
Date
Author
A Defense Framework for Privacy Risks in Remote Machine Learning Service
Yang Bai ... Yu Li
Security and Communication Networks | VOL. 2021
Yang Bai, et. al.Yang Bai ... Yu Li
18 Jun 2021
The Case for Medical Device Cybersecurity Hygiene Practices for Frontline Personnel
Stephen L Grimes ... Axel Wirth
Biomedical Instrumentation & Technology | VOL. 55
Stephen L Grimes, et. al.Stephen L Grimes ... Axel Wirth
01 Jul 2021
Cybersecurity, Encryption, and Defense Industry Compliance with United States Export Regulations
Rose Richerson Eichler
Texas A&M Journal of Property Law | VOL. 5
Rose Richerson EichlerRose Richerson Eichler
01 Oct 2018
An Effective Risk Computation Metric for Android Malware Detection
...
-
, et. al. ...
24 Dec 2016
View more papers

More From: INTERNATIONAL JOURNAL OF COMPUTERS & TECHNOLOGY

Paper Title
Journal
Date
Author
A multidimensional EEG feature extraction attention detection for BCI System
Ran Zhang ... Chengyuan Shen
INTERNATIONAL JOURNAL OF COMPUTERS & TECHNOLOGY | VOL. -
Ran Zhang, et. al.Ran Zhang ... Chengyuan Shen
22 Jun 2024
Redundant Residue Number System (RRNS) Di-Base Table for SOLiD Sequencing
Joshua Apigagua Akanbasiam ... Matthew Glover Addo
INTERNATIONAL JOURNAL OF COMPUTERS & TECHNOLOGY | VOL. 24
Joshua Apigagua Akanbasiam, et. al.Joshua Apigagua Akanbasiam ... Matthew Glover Addo
17 Jun 2024
An EEG-based Sleep Staging method with hybrid entropy computation measures
Yiqian Yang ... Shuchen Fu
INTERNATIONAL JOURNAL OF COMPUTERS & TECHNOLOGY | VOL. 24
Yiqian Yang, et. al.Yiqian Yang ... Shuchen Fu
17 Jun 2024
Unveiling Neurophysiological Markers of Consciousness Levels through EEG Exploration
Jingming Gong ... Ran Zhang
INTERNATIONAL JOURNAL OF COMPUTERS & TECHNOLOGY | VOL. 24
Jingming Gong, et. al.Jingming Gong ... Ran Zhang
05 Jun 2024
View more papers

Disclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.