android security overviewandroid open sourWord文档格式.docx
- 文档编号:22378557
- 上传时间:2023-02-03
- 格式:DOCX
- 页数:26
- 大小:24.29KB
android security overviewandroid open sourWord文档格式.docx
《android security overviewandroid open sourWord文档格式.docx》由会员分享,可在线阅读,更多相关《android security overviewandroid open sourWord文档格式.docx(26页珍藏版)》请在冰豆网上搜索。
SystemandKernelLevelSecurity
LinuxSecurity
TheApplicationSandbox
SystemPartitionandSafeMode
FilesystemPermissions
FilesystemEncryption
PasswordProtection
DeviceAdministration
MemoryManagementSecurityEnhancements
RootingofDevices
AndroidApplicationSecurity
ElementsofApplications
TheAndroidPermissionModel:
AccessingProtectedAPIs
HowUsersUnderstandThird-PartyApplications
InterprocessCommunication
Cost-SensitiveAPIs
SIMCardAccess
PersonalInformation
SensitiveDataInputDevices
DeviceMetadata
ApplicationSigning
DigitalRightsManagement
AndroidUpdates
OtherResources
Androidisamodernmobileplatformthatwasdesignedtobetrulyopen.Android
applicationsmakeuseofadvancedhardwareandsoftware,aswellaslocaland
serveddata,exposedthroughtheplatformtobringinnovationandvalueto
consumers.Toprotectthatvalue,theplatformmustofferanapplication
environmentthatensuresthesecurityofusers,data,applications,thedevice,
andthenetwork.
Securinganopenplatformrequiresarobustsecurityarchitectureandrigorous
securityprograms.Androidwasdesignedwithmulti-layeredsecuritythat
providestheflexibilityrequiredforanopenplatform,whileproviding
protectionforallusersoftheplatform.
Androidwasdesignedwithdevelopersinmind.Securitycontrolsweredesigned
toreducetheburdenondevelopers.Security-savvydeveloperscaneasilywork
withandrelyonflexiblesecuritycontrols.Developerslessfamiliarwith
securitywillbeprotectedbysafedefaults.
Androidwasdesignedwithdeviceusersinmind.Usersareprovidedvisibility
intohowapplicationswork,andcontroloverthoseapplications.Thisdesign
includestheexpectationthatattackerswouldattempttoperformcommon
attacks,suchassocialengineeringattackstoconvincedeviceuserstoinstall
malware,andattacksonthird-partyapplicationsonAndroid.Androidwas
designedtobothreducetheprobabilityoftheseattacksandgreatlylimitthe
impactoftheattackintheeventitwassuccessful.
ThisdocumentoutlinesthegoalsoftheAndroidsecurityprogram,describesthe
fundamentalsoftheAndroidsecurityarchitecture,andanswersthemost
pertinentquestionsforsystemarchitectsandsecurityanalysts.Thisdocument
focusesonthesecurityfeaturesofAndroid'
scoreplatformanddoesnot
discusssecurityissuesthatareuniquetospecificapplications,suchasthose
relatedtothebrowserorSMSapplication.Recommendedbestpracticesfor
buildingAndroiddevices,deployingAndroiddevices,ordevelopingapplications
forAndroidarenotthegoalofthisdocumentandareprovidedelsewhere.
Androidprovidesanopensourceplatformandapplicationenvironmentformobile
devices.
ThemainAndroidplatformbuildingblocksare:
DeviceHardware:
Androidrunsonawiderangeofhardwareconfigurations
includingsmartphones,tablets,andset-top-boxes.Androidis
processor-agnostic,butitdoestakeadvantageofsomehardware-specific
securitycapabilitiessuchasARMv6eXecute-Never.
AndroidOperatingSystem:
Thecoreoperatingsystemisbuiltontopof
theLinuxkernel.Alldeviceresources,likecamerafunctions,GPSdata,
Bluetoothfunctions,telephonyfunctions,networkconnections,etc.are
accessedthroughtheoperatingsystem.
AndroidApplicationRuntime:
Androidapplicationsaremostoftenwritten
intheJavaprogramminglanguageandrunintheDalvikvirtualmachine.
However,manyapplications,includingcoreAndroidservicesandapplications
arenativeapplicationsorincludenativelibraries.BothDalvikandnative
applicationsrunwithinthesamesecurityenvironment,containedwithinthe
ApplicationSandbox.Applicationsgetadedicatedpartofthefilesystemin
whichtheycanwriteprivatedata,includingdatabasesandrawfiles.
AndroidapplicationsextendthecoreAndroidoperatingsystem.Therearetwo
primarysourcesforapplications:
Pre-InstalledApplications:
Androidincludesasetofpre-installed
applicationsincludingphone,email,calendar,webbrowser,andcontacts.These
functionbothasuserapplicationsandtoprovidekeydevicecapabilitiesthat
canbeaccessedbyotherapplications.Pre-installedapplicationsmaybepart
oftheopensourceAndroidplatform,ortheymaybedevelopedbyanOEMfora
specificdevice.
User-InstalledApplications:
Androidprovidesanopendevelopment
environmentsupportinganythird-partyapplication.TheAndroidMarketoffers
usershundredsofthousandsofapplications.
Googleprovidesasetofcloud-basedservicesthatareavailabletoany
compatibleAndroiddevice.Theprimaryservicesare:
AndroidMarket:
TheAndroidMarketisacollectionofservicesthat
allowuserstodiscover,install,andpurchaseapplicationsfromtheirAndroid
deviceortheweb.TheMarketmakesiteasyfordeveloperstoreachAndroid
usersandpotentialcustomers.TheMarketalsoprovidescommunityreview,
applicationlicense
verification,
andothersecurityservices.
AndroidUpdates:
TheAndroidupdateservicedeliversnewcapabilitiesand
securityupdatestoAndroiddevices,includingupdatesthroughtheweborover
theair(OTA).
ApplicationServices:
FrameworksthatallowAndroidapplicationstouse
cloudcapabilitiessuchas(backing
up)application
dataandsettingsandcloud-to-devicemessaging
(C2DM)
forpushmessaging.
TheseservicesarenotpartoftheAndroidOpenSourceProjectandareout
ofscopeforthisdocument.Buttheyarerelevanttothesecurityofmost
Androiddevices,soarelatedsecuritydocumenttitled“GoogleServicesfor
Android:
SecurityOverview”isavailable.
Earlyonindevelopment,thecoreAndroiddevelopmentteamrecognizedthata
robustsecuritymodelwasrequiredtoenableavigorousecosystemof
applicationsanddevicesbuiltonandaroundtheAndroidplatformandsupported
bycloudservices.Asaresult,throughitsentiredevelopmentlifecycle,
Androidhasbeensubjectedtoaprofessionalsecurityprogram.TheAndroidteam
hashadtheopportunitytoobservehowothermobile,desktop,andserverplatforms
preventedandreactedtosecurityissuesandbuiltasecurity
programtoaddressweakpointsobservedinotherofferings.
ThekeycomponentsoftheAndroidSecurityPrograminclude:
DesignReview:
TheAndroidsecurityprocessbeginsearlyinthe
developmentlifecyclewiththecreationofarichandconfigurablesecurity
modelanddesign.Eachmajorfeatureoftheplatformisreviewedbyengineering
andsecurityresources,withappropriatesecuritycontrolsintegratedintothe
architectureofthesystem.
PenetrationTestingandCodeReview:
Duringthedevelopmentofthe
platform,Android-createdandopen-sourcecomponentsaresubjecttovigorous
securityreviews.ThesereviewsareperformedbytheAndroidSecurityTeam,
Google’sInformationSecurityEngineeringteam,andindependentsecurity
consultants.Thegoalofthesereviewsistoidentifyweaknessesandpossible
vulnerabilitieswellbeforetheplatformisopen-sourced,andtosimulatethe
typesofanalysisthatwillbeperformedbyexternalsecurityexpertsupon
release.
OpenSourceandCommunityReview:
TheAndroidOpenSourceProjectenables
broadsecurityreviewbyanyinterestedparty.Androidalsousesopensource
technologiesthathaveundergonesignificantexternalsecurityreview,
suchastheLinuxkernel.TheAndroidMarketprovidesaforumforusersandcompanies
toprovideinformationaboutspecificapplicationsdirectlytousers.
IncidentResponse:
Evenwithalloftheseprecautions,securityissues
mayoccuraftershipping,whichiswhytheAndroidprojecthascreateda
comprehensivesecurityresponseprocess.Afull-timeAndroidsecurityteam
constantlymonitorsAndroid-specificandthegeneralsecuritycommunityfor
discussionofpotentialvulnerabilities.Uponthediscoveryoflegitimate
issues,theAndroidteamhasaresponseprocessthatenablestherapid
mitigationofvulnerabilitiestoensurethatpotentialrisktoallAndroid
usersisminimized.Thesecloud-supportedresponsescanincludeupdatingthe
Androidplatform(over-the-airupdates),removingapplicationsfromtheAndroid
Market,andremovingapplicationsfromdevicesinthefield.
Androidseekstobethemostsecureandusableoperatingsystemformobile
platformsbyre-purposingtraditionaloperatingsystemsecuritycontrolsto:
Protectuserdata
Protectsystemresources(includingthenetwork)
Provideapplicationisolation
Toachievetheseobjectives,Androidprovidesthesekeysecurityfeatures:
RobustsecurityattheOSlevelthroughtheLinuxkernel
Mandatoryapplicationsandboxforallapplications
Secureinterprocesscommunication
Applicationsigning
Application-definedanduser-grantedpermissions
ThesectionsbelowdescribetheseandothersecurityfeaturesoftheAndroid
platform.Figure1summarizesthesecuritycomponentsandconsiderationsof
thevariouslevelsoftheAndroidsoftwarestack.Eachcomponentassumesthat
thecomponentsbelowareproperlysecured.Withtheexceptionofasmallamount
ofAndroidOScoderunningasroot,allcodeabovetheLinuxKernelis
restrictedbytheApplicationSandbox.
Figure1:
Androidsoftwarestack.
SystemandKernelLevelSec
- 配套讲稿:
如PPT文件的首页显示word图标,表示该PPT已包含配套word讲稿。双击word图标可打开word文档。
- 特殊限制:
部分文档作品中含有的国旗、国徽等图片,仅作为作品整体效果示例展示,禁止商用。设计者仅对作品中独创性部分享有著作权。
- 关 键 词:
- android security overview open sour
链接地址:https://www.bdocx.com/doc/22378557.html