Loading presentation...

Present Remotely

Send the link below via email or IM

Copy

Present to your audience

Start remote presentation

  • Invited audience members will follow you as you navigate and present
  • People invited to a presentation do not need a Prezi account
  • This link expires 10 minutes after you close the presentation
  • A maximum of 30 users can follow your presentation
  • Learn more about this feature in our knowledge base article

Do you really want to delete this prezi?

Neither you, nor the coeditors you shared it with will be able to recover it again.

DeleteCancel

Make your likes visible on Facebook?

Connect your Facebook account to Prezi and let your likes appear on your timeline.
You can change this under Settings & Account at any time.

No, thanks

BA Thesis: Enhanced Android Security to prevent Privilege Escalation

No description
by

Janosch Maier

on 10 October 2013

Comments (0)

Please log in to add your comment.

Report abuse

Transcript of BA Thesis: Enhanced Android Security to prevent Privilege Escalation

Enhanced Android Security to prevent Privilege Escalation
Janosch Maier
Bachelorarbeit in Informatik
Outline
Android Security – Fitting together?
Evaluated Defense Mechanisms
Virtualization
SEAndroid
User Interaction
Live Demo
Conclusion

Android & Security?
Companies need Data Isolation
Privilege Escalation?
Root Exploits
IPC Exploits
In-App-Virtualization
All business apps are locked in a container
Communication with host system?
Virtualization
System Virtualization
Multi Boot
Strict separation
Root exploits (on host)
Live Demo
Is everything working?
Conclusion
User Interaction
Something like this for all intents?
User knows what is legit...?
EULA-phenomenon
SEAndroid
If not: I have videos...
Increased Security
Multi-Boot + SELinux
Merge needed
Better security in 4.3
Policies control file access:
No policy – No access!
maierj@in.tum.de
Feedback?
Important for me due to
talk on Droidcon London
Questions?
Android Fragmentation
Source: http://opensignal.com/reports/fragmentation-2013/ (26/09/2013)
Other kernel hardening possible as well (e.g. restrict setuid)
Portions of this presentation (Android image) are modifications based on work created and shared by Google and used according to terms described in the Creative Commons 3.0 Attribution License.
Full transcript