Nov 2013
25 Mon
26 Tue
27 Wed
28 Thu 10:45 AM – 05:30 PM IST
29 Fri 10:45 AM – 06:45 PM IST
30 Sat
1 Sun
AJ
Arun Joseph
@arunjoseph05
Android Platform Security - Concepts, Attacks, Guidelines
Submitted Oct 18, 2013
Section:
Systems
Technical level:
Intermediate
The session will focus at exploring the security architecture and features of Android( JellyBean 4.3) from a platfrom builders perspective.
Outline
Android security is multi-layered and more robust than traditional Linux.
This talk covers in-depth analysis of various security features introduced till JellyBean 4.3.
- Memory Protection Options
- Application SandBoxing
- Full Filesystem encryption
- Storing the master keys and certificates
- SEAndroid project
- Full FileSystem Encryption
- Cryptography
- Secure interprocess communication
- Application signing
- Application-defined and user-granted permissions
Answers what users and developers can expect from this security framework and how to tune different security controls.
This talk also covers some of the famous Android security attacks
- FROST
- Android MasterKeys Vulnerability
Finally, how platform builders like Texas Instruments enhance security of Android.
- Enabling Hardware Cryptography Accelerators
- Enabling Hardware Random Number Generators
Speaker bio
Arun Joseph
Arun work for Texas Instruments and currently leading the android development project hosted on http://arowboat.org
Arun has more than 3 years of Android and Linux Kernel experience and is an expert in Embedded systems.
Comments
Hosted by
droidconIN is an annual conference on Android, part of the worldwide series of events.
more
{{ gettext('Login to leave a comment') }}
{{ gettext('Post a comment…') }}{{ errorMsg }}
{{ gettext('No comments posted yet') }}