Outline Introduction Android Applications Security Enforcement Security Refinements Lessons in Defining Policy Introduction Next generation open operation system will be developed on small mobile devices. Android (Google) -a widely anticipated open source operating system for mobile devices -it provide base operation system, application middleware layer, Java software development kit and a collection of system applications | Understanding Android Security Yinshu Wu William Enck, Machigar Ongtang, and PatrickMcDaniel Pennsylvania State University Introduction Android Applications Security Enforcement Security Refinements Lessons in Defining Policy Outline Introduction Next generation open operation system will be developed on small mobile devices. Android (Google) -a widely anticipated open source operating system for mobile devices -it provide base operation system, application middleware layer, Java software development kit and a collection of system applications. Introduction (cont.) Feature of Android Doesn’t support applications developed for other platforms Restricts application interaction to its special APIs by running each application as its own user identity Uses a simple permission label assignment model to restrict access to resources and other applications Android Applications --- Example Example of location-sensitive social networking application for mobile phones in which . | Understanding Android Security Yinshu Wu William Enck, Machigar Ongtang, and PatrickMcDaniel Pennsylvania State University Introduction Android Applications Security Enforcement Security Refinements Lessons in Defining Policy Outline Introduction Next generation open operation system will be developed on small mobile devices. Android (Google) -a widely anticipated open source operating system for mobile devices -it provide base operation system, application middleware layer, Java software development kit and a collection of system applications. Introduction (cont.) Feature of Android Doesn’t support applications developed for other platforms Restricts application interaction to its special APIs by running each application as its own user identity Uses a simple permission label assignment model to restrict access to resources and other applications Android Applications --- Example Example of location-sensitive social networking application for mobile phones in which users can discover their friends’ locations. Activities provide a user interface, Services execute background processing, Content providers are data storage facilities, and Broadcast receivers act as mailboxes for messages from other applications. Android Applications --- Example Application(cont.) Take FriendTracker application for example, FriendTracker (Service) polls an external service to discover friends’ locations FriendProvider (Content provider) maintains the most recent geographic coordinates for friends FriendTrackerControl (Activity) defines a user interface for starting and stopping the tracking functionality BootReceiver (Broadcast receiver) gets a notification from the system once it boots (the application uses this to automatically start the FriendTracker service). Android Applications--- Component Interaction Intent - is the primary mechanism for component interaction, which is simply a message object containing a destination component address and data Action - .