Sinopsis
´I honestly didn´t believe I´d learn much from the book because I´ve been working on Android security for many years. This belief could not have been more wrong. Android Security Internals has earned a permanent spot on my office bookshelf.´-Jon ´jcase´ Sawyer, from the Foreword
There are more than one billion Android devices in use today, each one a potential target. Unfortunately, many fundamental Android security features have been little more than a black box to all but the most elite security professionals-until now.
In Android Security Internals, top Android security expert Nikolay Elenkov takes us under the hood of the Android security system. Elenkov describes Android security architecture from the bottom up, delving into the implementation of major security-related components and subsystems, like Binder IPC, permissions, cryptographic providers, and device administration.
You´ll learn:
�How Android permissions are declared, used, and enforced
�How Android manages application packages and employs code signing to verify their authenticity
�How Android implements the Java Cryptography Architecture (JCA) and Java Secure Socket Extension (JSSE) frameworks
�About Android´s credential storage system and APIs, which let applications store cryptographic keys securely
�About the online account management framework and how Google accounts integrate with Android
�About the implementation of verified boot, disk encryption, lockscreen, and other device security features
�How Android´s bootloader and recovery OS are used to perform full system updates, and how to obtain root access
With its unprecedented level of depth and detail, Android Security Internals is a must-have for any security-minded Android developer.
Chapter 1 : Android's Security Model
Android's Architecture
Android's Security Model
Summary
Chapter 2 : Permissions
The Nature of Permissions
Requesting Permissions
Permission Management
Permission Protection Levels
Permission Assignment
Permission Enforcement
System Permissions
Shared User ID
Custom Permissions
Public and Private Components
Activity and Service Permissions
Broadcast Permissions
Content Provider Permissions
Pending Intents
Summary
Chapter 3 : Package Management
Android Application Package Format
Code signing
APK Install Process
Package Verification
Summary
Chapter 4 : User Management
Multi-User Support Overview
Types of Users
User Management
User Metadata
Per-User Application Management
External Storage
Other Multi-User Features
Summary
Chapter 5 : Cryptographic Providers
JCA Provider Architecture
JCA Engine Classes
Android JCA Providers
Using a Custom Provider
Summary
Chapter 6 : Network Security and PKI
PKI and SSL Overview
JSSE Introduction
Android JSSE Implementation
Summary
Chapter 7 : Credential Storage
VPN and Wi-Fi EAP Credentials
Credential Storage Implementation
Public APIs
Summary
Chapter 8 : Online Account Management
Android Account Management Overview
Account Management Implementation
Google Accounts Support
Summary
Chapter 9 : Enterprise Security
Device Administration
VPN Support
Wi-Fi EAP
Summary
Chapter 10 : Device Security
Controlling OS Boot-Up and Installation
Verified Boot
Disk Encryption
Screen Security
Secure USB Debugging
Android Backup
Summary
Chapter 11 : NFC and Secure Elements
NFC Overview
Android NFC Support
Secure Elements
Software Card Emulation
Summary
Chapter 12 : Selinux
SELinux Introduction
Android Implementation
Android 4.4 SELinux Policy
Summary
Chapter 13 : System Updates and Root Access
Bootloader
Recovery
Root Access
Root Access on Production Builds
Summary
Appendix
Librería Portfolio