Book description
Android Security Internals delves into Android components and subsystems to give you a deep and complete understanding of the security internals of Android devices.
Table of contents
- Android Security Internals: An In-Depth Guide to Android’s Security Architecture
- Foreword
- Acknowledgments
- Introduction
- 1. Android’s Security Model
-
2. Permissions
- The Nature of Permissions
- Requesting Permissions
- Permission Management
- Permission Protection Levels
- Permission Assignment
- Permission Enforcement
- System Permissions
- Shared User ID
- Custom Permissions
- Public and Private Components
- Activity and Service Permissions
- Broadcast Permissions
- Content Provider Permissions
- Pending Intents
- Summary
-
3. Package Management
- Android Application Package Format
- Code signing
-
APK Install Process
- Location of Application Packages and Data
- Active Components
-
Installing a Local Package
- Parsing and Verifying the Package
- Accepting Permissions and Starting the Install Process
- Copying to the Application Directory
- The Package Scan
- Creating Data Directories
- Generating Optimized DEX
- File and Directory Structure
- Adding the New Package to packages.xml
- Package Attributes
- Updating Components and Permissions
- Updating a Package
- Installing Encrypted APKs
- Forward Locking
- Android 4.1 Forward Locking Implementation
- Encrypted Apps and Google Play
- Package Verification
- Summary
- 4. User Management
-
5. Cryptographic Providers
- JCA Provider Architecture
-
JCA Engine Classes
- Obtaining an Engine Class Instance
- Algorithm Names
- SecureRandom
- MessageDigest
- Signature
- Cipher
- Mac
- Key
- SecretKey and PBEKey
- PublicKey, PrivateKey, and KeyPair
- KeySpec
- KeyFactory
- SecretKeyFactory
- KeyPairGenerator
- KeyGenerator
- KeyAgreement
- KeyStore
- CertificateFactory and CertPath
- CertPathValidator and CertPathBuilder
- Android JCA Providers
- Using a Custom Provider
- Summary
- 6. Network Security and PKI
- 7. Credential Storage
-
8. Online Account Management
- Android Account Management Overview
- Account Management Implementation
- Google Accounts Support
- Summary
- 9. Enterprise Security
- 10. Device Security
- 11. NFC and Secure Elements
-
12. Selinux
- SELinux Introduction
- Android Implementation
- Android 4.4 SELinux Policy
- Summary
- 13. System Updates and Root Access
- Index
- Copyright
Product information
- Title: Android Security Internals
- Author(s):
- Release date: October 2014
- Publisher(s): No Starch Press
- ISBN: 9781593275815
You might also like
book
Android Security Cookbook
Practical recipes to delve into Android’s security mechanisms by troubleshooting common vulnerabilities in applications and Android …
book
The Android Malware Handbook
This groundbreaking guide to Android malware distills years of research by machine learning experts in academia …
book
Android Hacker's Handbook
The first comprehensive guide to discovering and preventing attacks on the Android OS As the Android …
book
Java Security, 2nd Edition
One of Java's most striking claims is that it provides a secure programming environment. Yet despite …