Android Security

Android is a multiprocess system. Each application runs on top of the Android Dalvik machine. Each Dalvik machine runs on top of a Linux process. Each process runs in its own sandbox, which means it can access only the resources it creates.

By default, each application is assigned a unique Linux user ID. It is possible to configure multiple applications to share the same user ID. This allows those applications to have the same permission to access the resources.

To access resources outside of the application sandbox, the application needs to request permission from the Android system. Most of the native components in Android have permission restrictions. The permissions requested in the application manifest are exposed to the user during installation. If a user allows installation of the application, then the permissions are granted. Permissions cannot be added after the application is installed. The permissions are defined under android.Manifest.permission.

As discussed in Chapter 1,"Overview of Android," each application needs a self-signed private keystore that contains a certificate. This keystore is used to identify the author of the application, but does not manage permissions of the applications.An application can grant permission to a given group using the permission tag in the AndroidManifest file.

Character Building Thought Power

Character Building Thought Power

Character-Building Thought Power by Ralph Waldo Trine. Ralph draws a distinct line between bad and good habits. In this book, every effort is made by the writer to explain what comprises good habits and why every one needs it early in life. It draws the conclusion that habits nurtured in early life concretize into impulses in future for the good or bad of the subject.

Get My Free Ebook


Post a comment