Android Security Internals by Nikolay Elenkov
There are more than one billion Android devices in use today, each one a potential target. Unfortunately, many fundamental Android security features have been little more than a black box to all but the most elite security professionals until now. In Android Security Internals, top Android security expert Nikolay Elenkov takes us under the hood of the Android security sysetem. Elenkov describes Android security archietecture from the bottom up, delving into the impleementation of major security-related components and subsystems, like Binder IPC, permissions, cryptographic providers, and device administration. You ll learn: How Android permissions are declared, used, and enforced How Android manages application packages and employs code signing to verify their authenticity How Android implements the Java Cryptography Architecture (JCA) and Java Secure Socket Extension (JSSE) frameworks About Android s credential storage system and APIs, which let applications store cryptographic ke