Book description
Android Security Internals delves into Android components and subsystems to give you a deep and complete understanding of the security internals of Android devices.
Table of contents
- Android Security Internals: An In-Depth Guide to Android’s Security Architecture
- Foreword
- Acknowledgments
- Introduction
- 1. Android’s Security Model
-
2. Permissions
- The Nature of Permissions
- Requesting Permissions
- Permission Management
- Permission Protection Levels
- Permission Assignment
- Permission Enforcement
- System Permissions
- Shared User ID
- Custom Permissions
- Public and Private Components
- Activity and Service Permissions
- Broadcast Permissions
- Content Provider Permissions
- Pending Intents
- Summary
-
3. Package Management
- Android Application Package Format
- Code signing
-
APK Install Process
- Location of Application Packages and Data
- Active Components
-
Installing a Local Package
- Parsing and Verifying the Package
- Accepting Permissions and Starting the Install Process
- Copying to the Application Directory
- The Package Scan
- Creating Data Directories
- Generating Optimized DEX
- File and Directory Structure
- Adding the New Package to packages.xml
- Package Attributes
- Updating Components and Permissions
- Updating a Package
- Installing Encrypted APKs
- Forward Locking
- Android 4.1 Forward Locking Implementation
- Encrypted Apps and Google Play
- Package Verification
- Summary
- 4. User Management
-
5. Cryptographic Providers
- JCA Provider Architecture
-
JCA Engine Classes
- Obtaining an Engine Class Instance
- Algorithm Names
- SecureRandom
- MessageDigest
- Signature
- Cipher
- Mac
- Key
- SecretKey and PBEKey
- PublicKey, PrivateKey, and KeyPair
- KeySpec
- KeyFactory
- SecretKeyFactory
- KeyPairGenerator
- KeyGenerator
- KeyAgreement
- KeyStore
- CertificateFactory and CertPath
- CertPathValidator and CertPathBuilder
- Android JCA Providers
- Using a Custom Provider
- Summary
- 6. Network Security and PKI
- 7. Credential Storage
-
8. Online Account Management
- Android Account Management Overview
- Account Management Implementation
- Google Accounts Support
- Summary
- 9. Enterprise Security
- 10. Device Security
- 11. NFC and Secure Elements
-
12. Selinux
- SELinux Introduction
- Android Implementation
- Android 4.4 SELinux Policy
- Summary
- 13. System Updates and Root Access
- Index
- Copyright
Product information
- Title: Android Security Internals
- Author(s):
- Release date: October 2014
- Publisher(s): No Starch Press
- ISBN: 9781593275815
You might also like
book
Android Security Cookbook
Practical recipes to delve into Android’s security mechanisms by troubleshooting common vulnerabilities in applications and Android …
book
Android Security
Android Security: Attacks and Defenses is for anyone interested in learning about the strengths and weaknesses …
book
SELinux by Example: Using Security Enhanced Linux
SELinux: Bring World-Class Security to Any Linux Environment! SELinux offers Linux/UNIX integrators, administrators, and developers a …
book
iOS Application Security
iOS Application Security covers everything you need to know to design secure iOS apps from the …