SlideShare ist ein Scribd-Unternehmen logo

Lange

•
•
Droidcon Berlin
Droidcon Berlin
TechnologieNews & Politik
1 von 31
Downloaden Sie, um offline zu lesen
State of the Union: Android Security Overview Matthias Lange, Steffen Liebergeld, April 9th, 2013, Droidcon 2013
Why should I care?
Mobile OS Market Share (2012) 2 % 4 % 4 % 5 % 17 % 68 % Android iOS Blackberry Symbian Windows Linux http://www.idc.com/getdoc.jsp?containerId=prUS23638712#.UUL-GaVW6-U
Malware Distribution 2010 F-Secure Mobile Threat Report Q4/2012
Malware Distribution 2011 F-Secure Mobile Threat Report Q4/2012
Malware Distribution 2012 F-Secure Mobile Threat Report Q4/2012
No!
High Level Overview
Agenda • Secure Boot • Memory Management Security Enhancements • Android Application Security • Android Security Problems • Future Improvements
Secure Boot
Boot Process 1. Initial Bootloader 2. Bootloader 3. Kernel 4. Android init 5. Android platform boot
Boot Architecture SoC DRAM DRAM CPU Controller Security Controller Boot Device Subsystem NAND Bootloader Signature SD/MMC ROM eMMC Kernel IBL USB OTG Signature OM Pin
Signature Check SHA1 Image Digest/ Image Hash Compare Check with Public Key Signature Signature Digest/ Hash
Memory Protection
Protection Against Memory Corruption • Since 2.3 Gingerbread • Android >= 4.1 • eXecute Never (XN) • Position Independent Executable (PIE) • mmap_min_addr • Read-only Relocations (RELro) • Android >= 4.0 • Address Space Layout Randomization (ASLR)
ASLR • Randomize mapping location of memory • Stack, heap, libs, executable • Primarily provided by Linux kernel • Usually combined with NX
Randomization in Gingerbread • cat /proc/PID/maps (vold) 00008000-00028000 r-xp 00000000 b3:09 450 /system/bin/vold 00028000-00029000 rw-p 00020000 b3:09 450 /system/bin/vold afd00000-afd40000 r-xp 00000000 b3:09 743 /system/lib/libc.so afd40000-afd43000 rw-p 00040000 b3:09 743 /system/lib/libc.so b0001000-b0009000 r-xp 00001000 b3:09 375 /system/bin/linker b0009000-b000a000 rw-p 00009000 b3:09 375 /system/bin/linker bebcc000-bebed000 rw-p 00000000 00:00 0 [stack] 00029000-00032000 rw-p 00000000 00:00 0 [heap] 00008000-00028000 r-xp 00000000 b3:09 450 /system/bin/vold 00028000-00029000 rw-p 00020000 b3:09 450 /system/bin/vold afd00000-afd40000 r-xp 00000000 b3:09 743 /system/lib/libc.so afd40000-afd43000 rw-p 00040000 b3:09 743 /system/lib/libc.so b0001000-b0009000 r-xp 00001000 b3:09 375 /system/bin/linker b0009000-b000a000 rw-p 00009000 b3:09 375 /system/bin/linker becf2000-bed13000 rw-p 00000000 00:00 0 [stack] 00029000-00032000 rw-p 00000000 00:00 0 [heap]
Randomization in ICS • cat /proc/PID/maps (vold) 00008000-0001f000 r-xp 00000000 103:01 436 /system/bin/vold 0001f000-00020000 rw-p 00017000 103:01 436 /system/bin/vold 400b7000-400f9000 r-xp 00000000 103:01 891 /system/lib/libc.so 400f9000-400fc000 rw-p 00042000 103:01 891 /system/lib/libc.so b0001000-b0009000 r-xp 00001000 103:01 357 /system/bin/linker b0009000-b000a000 rw-p 00009000 103:01 357 /system/bin/linker beabc000-beadd000 rw-p 00000000 00:00 0 [stack] 00020000-0002f000 rw-p 00000000 00:00 0 [heap] 00008000-0001f000 r-xp 00000000 103:01 436 /system/bin/vold 0001f000-00020000 rw-p 00017000 103:01 436 /system/bin/vold 400bc000-400fe000 r-xp 00000000 103:01 891 /system/lib/libc.so 400fe000-40101000 rw-p 00042000 103:01 891 /system/lib/libc.so b0001000-b0009000 r-xp 00001000 103:01 357 /system/bin/linker b0009000-b000a000 rw-p 00009000 103:01 357 /system/bin/linker bee36000-bee57000 rw-p 00000000 00:00 0 [stack] 00020000-0002f000 rw-p 00000000 00:00 0 [heap]
Randomization in Jelly Bean • cat /proc/PID/maps (sleep 1000) 400e8000-40100000 r-xp 00000000 103:01 429       /system/bin/toolbox 40101000-40102000 r--p 00018000 103:01 429       /system/bin/toolbox 40102000-40104000 rw-p 00019000 103:01 429       /system/bin/toolbox 40093000-400d6000 r-xp 00000000 103:01 86        /system/lib/libc.so 400d6000-400d9000 rw-p 00043000 103:01 86        /system/lib/libc.so 40195000-401a8000 r-xp 00000000 103:01 889       /system/bin/linker 401a8000-401a9000 r--p 00012000 103:01 889       /system/bin/linker beb87000-beba8000 rw-p 00000000 00:00 0          [stack] 40046000-4005e000 r-xp 00000000 103:01 429       /system/bin/toolbox 4005f000-40060000 r--p 00018000 103:01 429       /system/bin/toolbox 40060000-40062000 rw-p 00019000 103:01 429       /system/bin/toolbox 40067000-400aa000 r-xp 00000000 103:01 86        /system/lib/libc.so 400aa000-400ad000 rw-p 00043000 103:01 86        /system/lib/libc.so 4011c000-4012f000 r-xp 00000000 103:01 889       /system/bin/linker 4012f000-40130000 r--p 00012000 103:01 889       /system/bin/linker bef0d000-bef2e000 rw-p 00000000 00:00 0          [stack]
Application Security
Bouncer • Scans and detects malware while uploading App to Market • App gets executed in emulator • Detection of emulator is easy • Since Jelly Bean 4.2 local version • Scans Apps from alternative app stores
App Encryption • Introduced in Jelly Bean 4.1 • Encrypt paid Apps with device specific key • Disabled after bugs have been found
Android Security Problems
Missing Updates • At least three parties involved • Google/OHA, OEM, Carrier • Fast product cycle • Carrier can block updates • Millions of devices with well known vulnerabilities
Android Version Distribution Donut Eclair Froyo Gingerbread Honeycomb Ice Cream Sandwich Jelly Bean 4.1 Jelly Bean 4.2 0 12,5 25 37,5 50 http://developer.android.com/about/dashboards/index.html, March, 4th 2013
OEM Extensions • Modifications of the Android core • Samsung (/dev/exynos-mem, USSD) • Rootkits in OEM Apps • Bad software quality • Linux drivers
Android Security Improvements
New Features in Jelly Bean >= 4.2 • Secure USB debugging (whitelist for adb) • Better random number generator based on OpenSSL • SMS confirmation
SEAndroid • Android combined with SELinux • Rumor has it: may in Android 5.0 • Samsung Knox
Thank you! Q&A

Empfohlen

MSI X99A GODLIKE GAMING Motherboard
MSI X99A GODLIKE GAMING MotherboardMSI X99A GODLIKE GAMING Motherboard
MSI X99A GODLIKE GAMING MotherboardMSI Gaming
 
Android rooting
Android rootingAndroid rooting
Android rootingVikalp Sajwan
 
MSI Z97 GAMING Motherboards
MSI Z97 GAMING MotherboardsMSI Z97 GAMING Motherboards
MSI Z97 GAMING MotherboardsMSI Gaming
 
Is there an EFI monster inside your apple? by Pedro Vilaça - CODE BLUE 2015
Is there an EFI monster inside your apple? by Pedro Vilaça - CODE BLUE 2015Is there an EFI monster inside your apple? by Pedro Vilaça - CODE BLUE 2015
Is there an EFI monster inside your apple? by Pedro Vilaça - CODE BLUE 2015CODE BLUE
 
Lista Precios
Lista PreciosLista Precios
Lista Preciossantybsc
 
MSI Z170 GAMING Series Motherboards
MSI Z170 GAMING Series MotherboardsMSI Z170 GAMING Series Motherboards
MSI Z170 GAMING Series MotherboardsMSI Gaming
 
Geniatech Robust Android Signage Player
Geniatech Robust Android Signage Player Geniatech Robust Android Signage Player
Geniatech Robust Android Signage Player Geniatech
 
Partes piezas mayo
Partes piezas mayoPartes piezas mayo
Partes piezas mayoHenry Nazir Triforia
 

Empfohlen

MSI X99A GODLIKE GAMING Motherboard
MSI X99A GODLIKE GAMING MotherboardMSI X99A GODLIKE GAMING Motherboard
MSI X99A GODLIKE GAMING MotherboardMSI Gaming
 
Android rooting
Android rootingAndroid rooting
Android rootingVikalp Sajwan
 
MSI Z97 GAMING Motherboards
MSI Z97 GAMING MotherboardsMSI Z97 GAMING Motherboards
MSI Z97 GAMING MotherboardsMSI Gaming
 
Is there an EFI monster inside your apple? by Pedro Vilaça - CODE BLUE 2015
Is there an EFI monster inside your apple? by Pedro Vilaça - CODE BLUE 2015Is there an EFI monster inside your apple? by Pedro Vilaça - CODE BLUE 2015
Is there an EFI monster inside your apple? by Pedro Vilaça - CODE BLUE 2015CODE BLUE
 
Lista Precios
Lista PreciosLista Precios
Lista Preciossantybsc
 
MSI Z170 GAMING Series Motherboards
MSI Z170 GAMING Series MotherboardsMSI Z170 GAMING Series Motherboards
MSI Z170 GAMING Series MotherboardsMSI Gaming
 
Geniatech Robust Android Signage Player
Geniatech Robust Android Signage Player Geniatech Robust Android Signage Player
Geniatech Robust Android Signage Player Geniatech
 
Partes piezas mayo
Partes piezas mayoPartes piezas mayo
Partes piezas mayoHenry Nazir Triforia
 
Android– forensics and security testing
Android– forensics and security testingAndroid– forensics and security testing
Android– forensics and security testingSanthosh Kumar
 
MSI PRO Series Motherboard
MSI PRO Series MotherboardMSI PRO Series Motherboard
MSI PRO Series MotherboardMSI Gaming
 
What is Rooting in Anndroid, Benefit and Risk of Android Rooting
What is Rooting in Anndroid, Benefit and Risk of Android RootingWhat is Rooting in Anndroid, Benefit and Risk of Android Rooting
What is Rooting in Anndroid, Benefit and Risk of Android Rootingkalaivanan97
 
Android Rooting Technology
Android Rooting TechnologyAndroid Rooting Technology
Android Rooting TechnologyTarak Tar
 
Rooting android
Rooting androidRooting android
Rooting androidDignitas Digital Pvt. Ltd.
 
Android Development Tools
Android Development ToolsAndroid Development Tools
Android Development ToolsDominik Helleberg
 
Rooting an Android phone
Rooting an Android phoneRooting an Android phone
Rooting an Android phoneArnav Gupta
 
Wispi: Mini Karma Router For Pentester - Rama Tri Nanda
Wispi: Mini Karma Router For Pentester - Rama Tri NandaWispi: Mini Karma Router For Pentester - Rama Tri Nanda
Wispi: Mini Karma Router For Pentester - Rama Tri Nandaidsecconf
 
Rooting android
Rooting androidRooting android
Rooting androidMatt Vieyra
 
Harga Komputer
Harga KomputerHarga Komputer
Harga Komputerkomputer laptop
 
The Universal Serial Web @HolyJS
The Universal Serial Web @HolyJSThe Universal Serial Web @HolyJS
The Universal Serial Web @HolyJSasciidisco
 
Android Rooting
Android RootingAndroid Rooting
Android RootingSisir Molakalapalli
 
Soyo syd6iba
Soyo syd6ibaSoyo syd6iba
Soyo syd6ibaRoberto Mantovani
 
Android Rooting and Flashing
Android Rooting and FlashingAndroid Rooting and Flashing
Android Rooting and FlashingMuhammad Ehsan
 
Android Development Tools
Android Development ToolsAndroid Development Tools
Android Development ToolsDominik Helleberg
 
Rooting android
Rooting androidRooting android
Rooting androidBhoomit Belani
 
Launch Impossible Current State of Application Control Bypasses on ATMs.
Launch Impossible Current State of Application Control Bypasses on ATMs.Launch Impossible Current State of Application Control Bypasses on ATMs.
Launch Impossible Current State of Application Control Bypasses on ATMs.Payment Village
 
Lukas Apa - Hacking Robots Before SkyNet
Lukas Apa - Hacking Robots Before SkyNet Lukas Apa - Hacking Robots Before SkyNet
Lukas Apa - Hacking Robots Before SkyNet NoNameCon
 
Rooting Android Devices
Rooting Android DevicesRooting Android Devices
Rooting Android DevicesLokendra Rawat
 
Android Rooting
Android RootingAndroid Rooting
Android RootingNarayan Vyas
 
Zertisa
ZertisaZertisa
ZertisaDroidcon Berlin
 
Droidcon 2011: Strategies for Android, Henning Boeger, Capgemini
Droidcon 2011: Strategies for Android, Henning Boeger, CapgeminiDroidcon 2011: Strategies for Android, Henning Boeger, Capgemini
Droidcon 2011: Strategies for Android, Henning Boeger, CapgeminiDroidcon Berlin
 

Weitere ähnliche Inhalte

Was ist angesagt?

Android– forensics and security testing
Android– forensics and security testingAndroid– forensics and security testing
Android– forensics and security testingSanthosh Kumar
 
MSI PRO Series Motherboard
MSI PRO Series MotherboardMSI PRO Series Motherboard
MSI PRO Series MotherboardMSI Gaming
 
What is Rooting in Anndroid, Benefit and Risk of Android Rooting
What is Rooting in Anndroid, Benefit and Risk of Android RootingWhat is Rooting in Anndroid, Benefit and Risk of Android Rooting
What is Rooting in Anndroid, Benefit and Risk of Android Rootingkalaivanan97
 
Android Rooting Technology
Android Rooting TechnologyAndroid Rooting Technology
Android Rooting TechnologyTarak Tar
 
Android Development Tools
Android Development ToolsAndroid Development Tools
Android Development ToolsDominik Helleberg
 
Rooting an Android phone
Rooting an Android phoneRooting an Android phone
Rooting an Android phoneArnav Gupta
 
Wispi: Mini Karma Router For Pentester - Rama Tri Nanda
Wispi: Mini Karma Router For Pentester - Rama Tri NandaWispi: Mini Karma Router For Pentester - Rama Tri Nanda
Wispi: Mini Karma Router For Pentester - Rama Tri Nandaidsecconf
 
Rooting android
Rooting androidRooting android
Rooting androidMatt Vieyra
 
The Universal Serial Web @HolyJS
The Universal Serial Web @HolyJSThe Universal Serial Web @HolyJS
The Universal Serial Web @HolyJSasciidisco
 
Android Rooting and Flashing
Android Rooting and FlashingAndroid Rooting and Flashing
Android Rooting and FlashingMuhammad Ehsan
 
Android Development Tools
Android Development ToolsAndroid Development Tools
Android Development ToolsDominik Helleberg
 
Launch Impossible Current State of Application Control Bypasses on ATMs.
Launch Impossible Current State of Application Control Bypasses on ATMs.Launch Impossible Current State of Application Control Bypasses on ATMs.
Launch Impossible Current State of Application Control Bypasses on ATMs.Payment Village
 
Lukas Apa - Hacking Robots Before SkyNet
Lukas Apa - Hacking Robots Before SkyNet Lukas Apa - Hacking Robots Before SkyNet
Lukas Apa - Hacking Robots Before SkyNet NoNameCon
 
Rooting Android Devices
Rooting Android DevicesRooting Android Devices
Rooting Android DevicesLokendra Rawat
 
Android Rooting
Android RootingAndroid Rooting
Android RootingNarayan Vyas
 

Was ist angesagt? (20)

Android– forensics and security testing
Android– forensics and security testingAndroid– forensics and security testing
Android– forensics and security testing
 
MSI PRO Series Motherboard
MSI PRO Series MotherboardMSI PRO Series Motherboard
MSI PRO Series Motherboard
 
What is Rooting in Anndroid, Benefit and Risk of Android Rooting
What is Rooting in Anndroid, Benefit and Risk of Android RootingWhat is Rooting in Anndroid, Benefit and Risk of Android Rooting
What is Rooting in Anndroid, Benefit and Risk of Android Rooting
 
Android Rooting Technology
Android Rooting TechnologyAndroid Rooting Technology
Android Rooting Technology
 
Rooting android
Rooting androidRooting android
Rooting android
 
Android Development Tools
Android Development ToolsAndroid Development Tools
Android Development Tools
 
Rooting an Android phone
Rooting an Android phoneRooting an Android phone
Rooting an Android phone
 
Wispi: Mini Karma Router For Pentester - Rama Tri Nanda
Wispi: Mini Karma Router For Pentester - Rama Tri NandaWispi: Mini Karma Router For Pentester - Rama Tri Nanda
Wispi: Mini Karma Router For Pentester - Rama Tri Nanda
 
Rooting android
Rooting androidRooting android
Rooting android
 
Harga Komputer
Harga KomputerHarga Komputer
Harga Komputer
 
The Universal Serial Web @HolyJS
The Universal Serial Web @HolyJSThe Universal Serial Web @HolyJS
The Universal Serial Web @HolyJS
 
Android Rooting
Android RootingAndroid Rooting
Android Rooting
 
Soyo syd6iba
Soyo syd6ibaSoyo syd6iba
Soyo syd6iba
 
Android Rooting and Flashing
Android Rooting and FlashingAndroid Rooting and Flashing
Android Rooting and Flashing
 
Android Development Tools
Android Development ToolsAndroid Development Tools
Android Development Tools
 
Rooting android
Rooting androidRooting android
Rooting android
 
Launch Impossible Current State of Application Control Bypasses on ATMs.
Launch Impossible Current State of Application Control Bypasses on ATMs.Launch Impossible Current State of Application Control Bypasses on ATMs.
Launch Impossible Current State of Application Control Bypasses on ATMs.
 
Lukas Apa - Hacking Robots Before SkyNet
Lukas Apa - Hacking Robots Before SkyNet Lukas Apa - Hacking Robots Before SkyNet
Lukas Apa - Hacking Robots Before SkyNet
 
Rooting Android Devices
Rooting Android DevicesRooting Android Devices
Rooting Android Devices
 
Android Rooting
Android RootingAndroid Rooting
Android Rooting
 

Andere mochten auch

Droidcon 2011: Strategies for Android, Henning Boeger, Capgemini
Droidcon 2011: Strategies for Android, Henning Boeger, CapgeminiDroidcon 2011: Strategies for Android, Henning Boeger, Capgemini
Droidcon 2011: Strategies for Android, Henning Boeger, CapgeminiDroidcon Berlin
 
Caught between fires html5 mahdi_njim
Caught between fires html5 mahdi_njimCaught between fires html5 mahdi_njim
Caught between fires html5 mahdi_njimDroidcon Berlin
 
20130409 1 developing apps for android with kivy
20130409 1 developing apps for android with kivy20130409 1 developing apps for android with kivy
20130409 1 developing apps for android with kivyDroidcon Berlin
 
Droidcon ndk cpu_architecture_optimization
Droidcon ndk cpu_architecture_optimizationDroidcon ndk cpu_architecture_optimization
Droidcon ndk cpu_architecture_optimizationDroidcon Berlin
 
Starnberger internet of things droidcon berlin 2013i
Starnberger internet of things droidcon berlin 2013iStarnberger internet of things droidcon berlin 2013i
Starnberger internet of things droidcon berlin 2013iDroidcon Berlin
 
Droidcon 2011: Mosync mobile framework, Stefan Sels, Tronicum
Droidcon 2011: Mosync mobile framework, Stefan Sels, TronicumDroidcon 2011: Mosync mobile framework, Stefan Sels, Tronicum
Droidcon 2011: Mosync mobile framework, Stefan Sels, TronicumDroidcon Berlin
 
Droidcon2013 baa s_kohl_apiomat
Droidcon2013 baa s_kohl_apiomatDroidcon2013 baa s_kohl_apiomat
Droidcon2013 baa s_kohl_apiomatDroidcon Berlin
 
Droidcon2013 commercialsuccess rannenberg
Droidcon2013 commercialsuccess rannenbergDroidcon2013 commercialsuccess rannenberg
Droidcon2013 commercialsuccess rannenbergDroidcon Berlin
 
Meridian School Diversity Cafe Cultural Competency
Meridian School Diversity Cafe Cultural CompetencyMeridian School Diversity Cafe Cultural Competency
Meridian School Diversity Cafe Cultural CompetencyRosetta Eun Ryong Lee
 
Imcd b zhou yu fei - cultural diversity
Imcd b zhou yu fei - cultural diversityImcd b zhou yu fei - cultural diversity
Imcd b zhou yu fei - cultural diversityYu Fei Zhou
 
Positive relationships with parents
Positive relationships with parentsPositive relationships with parents
Positive relationships with parentsSera Mohammed
 
What Hispanic Students Say About Parental Involvement
What Hispanic Students Say About Parental InvolvementWhat Hispanic Students Say About Parental Involvement
What Hispanic Students Say About Parental InvolvementDrLourdes
 
Activities that involve parents
Activities that involve parentsActivities that involve parents
Activities that involve parentsohsosukai
 
Sony working with sony and developing for xperia devices
Sony working with sony and developing for xperia devicesSony working with sony and developing for xperia devices
Sony working with sony and developing for xperia devicesDroidcon Berlin
 
Droid con berlin_the_bb10_android_runtime
Droid con berlin_the_bb10_android_runtimeDroid con berlin_the_bb10_android_runtime
Droid con berlin_the_bb10_android_runtimeDroidcon Berlin
 
Droidcon2013 helleberg kruemmling_androidgoesreading_inovex_telekom
Droidcon2013 helleberg kruemmling_androidgoesreading_inovex_telekomDroidcon2013 helleberg kruemmling_androidgoesreading_inovex_telekom
Droidcon2013 helleberg kruemmling_androidgoesreading_inovex_telekomDroidcon Berlin
 

Andere mochten auch (20)

Zertisa
ZertisaZertisa
Zertisa
 
Droidcon 2011: Strategies for Android, Henning Boeger, Capgemini
Droidcon 2011: Strategies for Android, Henning Boeger, CapgeminiDroidcon 2011: Strategies for Android, Henning Boeger, Capgemini
Droidcon 2011: Strategies for Android, Henning Boeger, Capgemini
 
Caught between fires html5 mahdi_njim
Caught between fires html5 mahdi_njimCaught between fires html5 mahdi_njim
Caught between fires html5 mahdi_njim
 
20130409 1 developing apps for android with kivy
20130409 1 developing apps for android with kivy20130409 1 developing apps for android with kivy
20130409 1 developing apps for android with kivy
 
Droidcon ndk cpu_architecture_optimization
Droidcon ndk cpu_architecture_optimizationDroidcon ndk cpu_architecture_optimization
Droidcon ndk cpu_architecture_optimization
 
Starnberger internet of things droidcon berlin 2013i
Starnberger internet of things droidcon berlin 2013iStarnberger internet of things droidcon berlin 2013i
Starnberger internet of things droidcon berlin 2013i
 
Droidcon 2011: Mosync mobile framework, Stefan Sels, Tronicum
Droidcon 2011: Mosync mobile framework, Stefan Sels, TronicumDroidcon 2011: Mosync mobile framework, Stefan Sels, Tronicum
Droidcon 2011: Mosync mobile framework, Stefan Sels, Tronicum
 
Droidcon2013 baa s_kohl_apiomat
Droidcon2013 baa s_kohl_apiomatDroidcon2013 baa s_kohl_apiomat
Droidcon2013 baa s_kohl_apiomat
 
Droidcon2013 commercialsuccess rannenberg
Droidcon2013 commercialsuccess rannenbergDroidcon2013 commercialsuccess rannenberg
Droidcon2013 commercialsuccess rannenberg
 
Meridian School Diversity Cafe Cultural Competency
Meridian School Diversity Cafe Cultural CompetencyMeridian School Diversity Cafe Cultural Competency
Meridian School Diversity Cafe Cultural Competency
 
Imcd b zhou yu fei - cultural diversity
Imcd b zhou yu fei - cultural diversityImcd b zhou yu fei - cultural diversity
Imcd b zhou yu fei - cultural diversity
 
Positive relationships with parents
Positive relationships with parentsPositive relationships with parents
Positive relationships with parents
 
What Hispanic Students Say About Parental Involvement
What Hispanic Students Say About Parental InvolvementWhat Hispanic Students Say About Parental Involvement
What Hispanic Students Say About Parental Involvement
 
Activities that involve parents
Activities that involve parentsActivities that involve parents
Activities that involve parents
 
Sony working with sony and developing for xperia devices
Sony working with sony and developing for xperia devicesSony working with sony and developing for xperia devices
Sony working with sony and developing for xperia devices
 
parent involvement
parent involvementparent involvement
parent involvement
 
Droid con berlin_the_bb10_android_runtime
Droid con berlin_the_bb10_android_runtimeDroid con berlin_the_bb10_android_runtime
Droid con berlin_the_bb10_android_runtime
 
Parents As Partners In Excellence
Parents As Partners In ExcellenceParents As Partners In Excellence
Parents As Partners In Excellence
 
Droidcon2013 helleberg kruemmling_androidgoesreading_inovex_telekom
Droidcon2013 helleberg kruemmling_androidgoesreading_inovex_telekomDroidcon2013 helleberg kruemmling_androidgoesreading_inovex_telekom
Droidcon2013 helleberg kruemmling_androidgoesreading_inovex_telekom
 
Mattbrenner
MattbrennerMattbrenner
Mattbrenner
 

Ähnlich wie Lange

0xdroid -- community-developed Android distribution by 0xlab
0xdroid -- community-developed Android distribution by 0xlab0xdroid -- community-developed Android distribution by 0xlab
0xdroid -- community-developed Android distribution by 0xlabNational Cheng Kung University
 
Android OS Porting: Introduction
Android OS Porting: IntroductionAndroid OS Porting: Introduction
Android OS Porting: IntroductionJollen Chen
 
0xdroid osdc-2010-100426084937-phpapp02
0xdroid osdc-2010-100426084937-phpapp020xdroid osdc-2010-100426084937-phpapp02
0xdroid osdc-2010-100426084937-phpapp02chon2010
 
Learning AOSP - Building AOSP for Nexus 7
Learning AOSP - Building AOSP for Nexus 7Learning AOSP - Building AOSP for Nexus 7
Learning AOSP - Building AOSP for Nexus 7Nanik Tolaram
 
Mickey threats inside your platform final
Mickey threats inside your platform finalMickey threats inside your platform final
Mickey threats inside your platform finalPacSecJP
 
aibo introduction at ROSCon2018@Madrid
aibo introduction at ROSCon2018@Madridaibo introduction at ROSCon2018@Madrid
aibo introduction at ROSCon2018@MadridTomoya Fujita
 
Android Embedded - Smart Hubs als Schaltzentrale des IoT
Android Embedded - Smart Hubs als Schaltzentrale des IoTAndroid Embedded - Smart Hubs als Schaltzentrale des IoT
Android Embedded - Smart Hubs als Schaltzentrale des IoTinovex GmbH
 
Bringing up Android on your favorite X86 Workstation or VM (AnDevCon Boston, ...
Bringing up Android on your favorite X86 Workstation or VM (AnDevCon Boston, ...Bringing up Android on your favorite X86 Workstation or VM (AnDevCon Boston, ...
Bringing up Android on your favorite X86 Workstation or VM (AnDevCon Boston, ...Ron Munitz
 
Zeelogic android-training-2013
Zeelogic android-training-2013Zeelogic android-training-2013
Zeelogic android-training-2013Zeelogic Solu
 
Explorando Go em Ambiente Embarcado
Explorando Go em Ambiente EmbarcadoExplorando Go em Ambiente Embarcado
Explorando Go em Ambiente EmbarcadoAlvaro Viebrantz
 
BYOM Build Your Own Methodology (in Mobile Forensics)
BYOM Build Your Own Methodology (in Mobile Forensics)BYOM Build Your Own Methodology (in Mobile Forensics)
BYOM Build Your Own Methodology (in Mobile Forensics)Reality Net System Solutions
 
How to Make Android's Bootable Recovery Work For You by Drew Suarez
How to Make Android's Bootable Recovery Work For You by Drew SuarezHow to Make Android's Bootable Recovery Work For You by Drew Suarez
How to Make Android's Bootable Recovery Work For You by Drew SuarezShakacon
 
Deep Dive Into Android Security
Deep Dive Into Android SecurityDeep Dive Into Android Security
Deep Dive Into Android SecurityMarakana Inc.
 
Discover System Facilities inside Your Android Phone
Discover System Facilities inside Your Android Phone Discover System Facilities inside Your Android Phone
Discover System Facilities inside Your Android Phone National Cheng Kung University
 
Live Memory Forensics on Android devices
Live Memory Forensics on Android devicesLive Memory Forensics on Android devices
Live Memory Forensics on Android devicesNikos Gkogkos
 
History of Android Security – from linux to jelly bean
History of Android Security – from linux to jelly beanHistory of Android Security – from linux to jelly bean
History of Android Security – from linux to jelly beanJung Pil (J.P.) Choi
 
Flash Lite, un’occasione da 1.3 Miliardi di mobile phones
Flash Lite, un’occasione da 1.3 Miliardi di mobile phonesFlash Lite, un’occasione da 1.3 Miliardi di mobile phones
Flash Lite, un’occasione da 1.3 Miliardi di mobile phonesbiskero
 
IoThings you don't even need to hack
IoThings you don't even need to hackIoThings you don't even need to hack
IoThings you don't even need to hackSlawomir Jasek
 

Ähnlich wie Lange (20)

0xdroid -- community-developed Android distribution by 0xlab
0xdroid -- community-developed Android distribution by 0xlab0xdroid -- community-developed Android distribution by 0xlab
0xdroid -- community-developed Android distribution by 0xlab
 
Android OS Porting: Introduction
Android OS Porting: IntroductionAndroid OS Porting: Introduction
Android OS Porting: Introduction
 
0xdroid osdc-2010-100426084937-phpapp02
0xdroid osdc-2010-100426084937-phpapp020xdroid osdc-2010-100426084937-phpapp02
0xdroid osdc-2010-100426084937-phpapp02
 
Learning AOSP - Building AOSP for Nexus 7
Learning AOSP - Building AOSP for Nexus 7Learning AOSP - Building AOSP for Nexus 7
Learning AOSP - Building AOSP for Nexus 7
 
Mickey threats inside your platform final
Mickey threats inside your platform finalMickey threats inside your platform final
Mickey threats inside your platform final
 
aibo introduction at ROSCon2018@Madrid
aibo introduction at ROSCon2018@Madridaibo introduction at ROSCon2018@Madrid
aibo introduction at ROSCon2018@Madrid
 
Android Embedded - Smart Hubs als Schaltzentrale des IoT
Android Embedded - Smart Hubs als Schaltzentrale des IoTAndroid Embedded - Smart Hubs als Schaltzentrale des IoT
Android Embedded - Smart Hubs als Schaltzentrale des IoT
 
Embedded Android
Embedded AndroidEmbedded Android
Embedded Android
 
Bringing up Android on your favorite X86 Workstation or VM (AnDevCon Boston, ...
Bringing up Android on your favorite X86 Workstation or VM (AnDevCon Boston, ...Bringing up Android on your favorite X86 Workstation or VM (AnDevCon Boston, ...
Bringing up Android on your favorite X86 Workstation or VM (AnDevCon Boston, ...
 
Improve Android System Component Performance
Improve Android System Component PerformanceImprove Android System Component Performance
Improve Android System Component Performance
 
Zeelogic android-training-2013
Zeelogic android-training-2013Zeelogic android-training-2013
Zeelogic android-training-2013
 
Explorando Go em Ambiente Embarcado
Explorando Go em Ambiente EmbarcadoExplorando Go em Ambiente Embarcado
Explorando Go em Ambiente Embarcado
 
BYOM Build Your Own Methodology (in Mobile Forensics)
BYOM Build Your Own Methodology (in Mobile Forensics)BYOM Build Your Own Methodology (in Mobile Forensics)
BYOM Build Your Own Methodology (in Mobile Forensics)
 
How to Make Android's Bootable Recovery Work For You by Drew Suarez
How to Make Android's Bootable Recovery Work For You by Drew SuarezHow to Make Android's Bootable Recovery Work For You by Drew Suarez
How to Make Android's Bootable Recovery Work For You by Drew Suarez
 
Deep Dive Into Android Security
Deep Dive Into Android SecurityDeep Dive Into Android Security
Deep Dive Into Android Security
 
Discover System Facilities inside Your Android Phone
Discover System Facilities inside Your Android Phone Discover System Facilities inside Your Android Phone
Discover System Facilities inside Your Android Phone
 
Live Memory Forensics on Android devices
Live Memory Forensics on Android devicesLive Memory Forensics on Android devices
Live Memory Forensics on Android devices
 
History of Android Security – from linux to jelly bean
History of Android Security – from linux to jelly beanHistory of Android Security – from linux to jelly bean
History of Android Security – from linux to jelly bean
 
Flash Lite, un’occasione da 1.3 Miliardi di mobile phones
Flash Lite, un’occasione da 1.3 Miliardi di mobile phonesFlash Lite, un’occasione da 1.3 Miliardi di mobile phones
Flash Lite, un’occasione da 1.3 Miliardi di mobile phones
 
IoThings you don't even need to hack
IoThings you don't even need to hackIoThings you don't even need to hack
IoThings you don't even need to hack
 

Mehr von Droidcon Berlin

Droidcon de 2014 google cast
Droidcon de 2014 google castDroidcon de 2014 google cast
Droidcon de 2014 google castDroidcon Berlin
 
Android programming -_pushing_the_limits
Android programming -_pushing_the_limitsAndroid programming -_pushing_the_limits
Android programming -_pushing_the_limitsDroidcon Berlin
 
Android industrial mobility
Android industrial mobility Android industrial mobility
Android industrial mobility Droidcon Berlin
 
Details matter in ux
Details matter in uxDetails matter in ux
Details matter in uxDroidcon Berlin
 
From sensor data_to_android_and_back
From sensor data_to_android_and_backFrom sensor data_to_android_and_back
From sensor data_to_android_and_backDroidcon Berlin
 
new_age_graphics_android_x86
new_age_graphics_android_x86new_age_graphics_android_x86
new_age_graphics_android_x86Droidcon Berlin
 
5 tips of monetization
5 tips of monetization5 tips of monetization
5 tips of monetizationDroidcon Berlin
 
Testing and Building Android
Testing and Building AndroidTesting and Building Android
Testing and Building AndroidDroidcon Berlin
 
Matchinguu droidcon presentation
Matchinguu droidcon presentationMatchinguu droidcon presentation
Matchinguu droidcon presentationDroidcon Berlin
 
Cgm life sdk_droidcon_2014_v3
Cgm life sdk_droidcon_2014_v3Cgm life sdk_droidcon_2014_v3
Cgm life sdk_droidcon_2014_v3Droidcon Berlin
 
The artofcalabash peterkrauss
The artofcalabash peterkraussThe artofcalabash peterkrauss
The artofcalabash peterkraussDroidcon Berlin
 
Raesch, gries droidcon 2014
Raesch, gries droidcon 2014Raesch, gries droidcon 2014
Raesch, gries droidcon 2014Droidcon Berlin
 
Android open gl2_droidcon_2014
Android open gl2_droidcon_2014Android open gl2_droidcon_2014
Android open gl2_droidcon_2014Droidcon Berlin
 
20140508 quantified self droidcon
20140508 quantified self droidcon20140508 quantified self droidcon
20140508 quantified self droidconDroidcon Berlin
 
Tuning android for low ram devices
Tuning android for low ram devicesTuning android for low ram devices
Tuning android for low ram devicesDroidcon Berlin
 
Froyo to kit kat two years developing & maintaining deliradio
Froyo to kit kat two years developing & maintaining deliradioFroyo to kit kat two years developing & maintaining deliradio
Froyo to kit kat two years developing & maintaining deliradioDroidcon Berlin
 
Droidcon2013 security genes_trendmicro
Droidcon2013 security genes_trendmicroDroidcon2013 security genes_trendmicro
Droidcon2013 security genes_trendmicroDroidcon Berlin
 

Mehr von Droidcon Berlin (20)

Droidcon de 2014 google cast
Droidcon de 2014 google castDroidcon de 2014 google cast
Droidcon de 2014 google cast
 
Android programming -_pushing_the_limits
Android programming -_pushing_the_limitsAndroid programming -_pushing_the_limits
Android programming -_pushing_the_limits
 
crashing in style
crashing in stylecrashing in style
crashing in style
 
Raspberry Pi
Raspberry PiRaspberry Pi
Raspberry Pi
 
Android industrial mobility
Android industrial mobility Android industrial mobility
Android industrial mobility
 
Details matter in ux
Details matter in uxDetails matter in ux
Details matter in ux
 
From sensor data_to_android_and_back
From sensor data_to_android_and_backFrom sensor data_to_android_and_back
From sensor data_to_android_and_back
 
droidparts
droidpartsdroidparts
droidparts
 
new_age_graphics_android_x86
new_age_graphics_android_x86new_age_graphics_android_x86
new_age_graphics_android_x86
 
5 tips of monetization
5 tips of monetization5 tips of monetization
5 tips of monetization
 
Testing and Building Android
Testing and Building AndroidTesting and Building Android
Testing and Building Android
 
Matchinguu droidcon presentation
Matchinguu droidcon presentationMatchinguu droidcon presentation
Matchinguu droidcon presentation
 
Cgm life sdk_droidcon_2014_v3
Cgm life sdk_droidcon_2014_v3Cgm life sdk_droidcon_2014_v3
Cgm life sdk_droidcon_2014_v3
 
The artofcalabash peterkrauss
The artofcalabash peterkraussThe artofcalabash peterkrauss
The artofcalabash peterkrauss
 
Raesch, gries droidcon 2014
Raesch, gries droidcon 2014Raesch, gries droidcon 2014
Raesch, gries droidcon 2014
 
Android open gl2_droidcon_2014
Android open gl2_droidcon_2014Android open gl2_droidcon_2014
Android open gl2_droidcon_2014
 
20140508 quantified self droidcon
20140508 quantified self droidcon20140508 quantified self droidcon
20140508 quantified self droidcon
 
Tuning android for low ram devices
Tuning android for low ram devicesTuning android for low ram devices
Tuning android for low ram devices
 
Froyo to kit kat two years developing & maintaining deliradio
Froyo to kit kat two years developing & maintaining deliradioFroyo to kit kat two years developing & maintaining deliradio
Froyo to kit kat two years developing & maintaining deliradio
 
Droidcon2013 security genes_trendmicro
Droidcon2013 security genes_trendmicroDroidcon2013 security genes_trendmicro
Droidcon2013 security genes_trendmicro
 

KĂźrzlich hochgeladen

ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke
ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemkeProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke
ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemkeProduct Anonymous
 
DEV meet-up UiPath Document Understanding May 7 2024 Amsterdam
DEV meet-up UiPath Document Understanding May 7 2024 AmsterdamDEV meet-up UiPath Document Understanding May 7 2024 Amsterdam
DEV meet-up UiPath Document Understanding May 7 2024 AmsterdamUiPathCommunity
 
DBX First Quarter 2024 Investor Presentation
DBX First Quarter 2024 Investor PresentationDBX First Quarter 2024 Investor Presentation
DBX First Quarter 2024 Investor PresentationDropbox
 
Mcleodganj Call Girls 🥰 8617370543 Service Offer VIP Hot Model
Mcleodganj Call Girls 🥰 8617370543 Service Offer VIP Hot ModelMcleodganj Call Girls 🥰 8617370543 Service Offer VIP Hot Model
Mcleodganj Call Girls 🥰 8617370543 Service Offer VIP Hot ModelDeepika Singh
 
FWD Group - Insurer Innovation Award 2024
FWD Group - Insurer Innovation Award 2024FWD Group - Insurer Innovation Award 2024
FWD Group - Insurer Innovation Award 2024The Digital Insurer
 
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, AdobeApidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobeapidays
 
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot TakeoffStrategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoffsammart93
 
EMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWER
EMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWEREMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWER
EMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWERMadyBayot
 
Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024
Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024
Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024Victor Rentea
 
Apidays New York 2024 - Passkeys: Developing APIs to enable passwordless auth...
Apidays New York 2024 - Passkeys: Developing APIs to enable passwordless auth...Apidays New York 2024 - Passkeys: Developing APIs to enable passwordless auth...
Apidays New York 2024 - Passkeys: Developing APIs to enable passwordless auth...apidays
 
MINDCTI Revenue Release Quarter One 2024
MINDCTI Revenue Release Quarter One 2024MINDCTI Revenue Release Quarter One 2024
MINDCTI Revenue Release Quarter One 2024MIND CTI
 
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FMECloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FMESafe Software
 
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost SavingRepurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost SavingEdi Saputra
 
Strategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a FresherStrategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a FresherRemote DBA Services
 
Introduction to Multilingual Retrieval Augmented Generation (RAG)
Introduction to Multilingual Retrieval Augmented Generation (RAG)Introduction to Multilingual Retrieval Augmented Generation (RAG)
Introduction to Multilingual Retrieval Augmented Generation (RAG)Zilliz
 
Vector Search -An Introduction in Oracle Database 23ai.pptx
Vector Search -An Introduction in Oracle Database 23ai.pptxVector Search -An Introduction in Oracle Database 23ai.pptx
Vector Search -An Introduction in Oracle Database 23ai.pptxRemote DBA Services
 
WSO2's API Vision: Unifying Control, Empowering Developers
WSO2's API Vision: Unifying Control, Empowering DevelopersWSO2's API Vision: Unifying Control, Empowering Developers
WSO2's API Vision: Unifying Control, Empowering DevelopersWSO2
 
CNIC Information System with Pakdata Cf In Pakistan
CNIC Information System with Pakdata Cf In PakistanCNIC Information System with Pakdata Cf In Pakistan
CNIC Information System with Pakdata Cf In Pakistandanishmna97
 
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...DianaGray10
 

KĂźrzlich hochgeladen (20)

ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke
ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemkeProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke
ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke
 
DEV meet-up UiPath Document Understanding May 7 2024 Amsterdam
DEV meet-up UiPath Document Understanding May 7 2024 AmsterdamDEV meet-up UiPath Document Understanding May 7 2024 Amsterdam
DEV meet-up UiPath Document Understanding May 7 2024 Amsterdam
 
DBX First Quarter 2024 Investor Presentation
DBX First Quarter 2024 Investor PresentationDBX First Quarter 2024 Investor Presentation
DBX First Quarter 2024 Investor Presentation
 
Mcleodganj Call Girls 🥰 8617370543 Service Offer VIP Hot Model
Mcleodganj Call Girls 🥰 8617370543 Service Offer VIP Hot ModelMcleodganj Call Girls 🥰 8617370543 Service Offer VIP Hot Model
Mcleodganj Call Girls 🥰 8617370543 Service Offer VIP Hot Model
 
FWD Group - Insurer Innovation Award 2024
FWD Group - Insurer Innovation Award 2024FWD Group - Insurer Innovation Award 2024
FWD Group - Insurer Innovation Award 2024
 
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, AdobeApidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
 
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot TakeoffStrategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
 
EMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWER
EMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWEREMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWER
EMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWER
 
Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024
Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024
Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024
 
Apidays New York 2024 - Passkeys: Developing APIs to enable passwordless auth...
Apidays New York 2024 - Passkeys: Developing APIs to enable passwordless auth...Apidays New York 2024 - Passkeys: Developing APIs to enable passwordless auth...
Apidays New York 2024 - Passkeys: Developing APIs to enable passwordless auth...
 
MINDCTI Revenue Release Quarter One 2024
MINDCTI Revenue Release Quarter One 2024MINDCTI Revenue Release Quarter One 2024
MINDCTI Revenue Release Quarter One 2024
 
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FMECloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
 
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost SavingRepurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
 
Strategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a FresherStrategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a Fresher
 
Introduction to Multilingual Retrieval Augmented Generation (RAG)
Introduction to Multilingual Retrieval Augmented Generation (RAG)Introduction to Multilingual Retrieval Augmented Generation (RAG)
Introduction to Multilingual Retrieval Augmented Generation (RAG)
 
Vector Search -An Introduction in Oracle Database 23ai.pptx
Vector Search -An Introduction in Oracle Database 23ai.pptxVector Search -An Introduction in Oracle Database 23ai.pptx
Vector Search -An Introduction in Oracle Database 23ai.pptx
 
WSO2's API Vision: Unifying Control, Empowering Developers
WSO2's API Vision: Unifying Control, Empowering DevelopersWSO2's API Vision: Unifying Control, Empowering Developers
WSO2's API Vision: Unifying Control, Empowering Developers
 
CNIC Information System with Pakdata Cf In Pakistan
CNIC Information System with Pakdata Cf In PakistanCNIC Information System with Pakdata Cf In Pakistan
CNIC Information System with Pakdata Cf In Pakistan
 
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
 
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
 

Lange

  • 1. State of the Union: Android Security Overview Matthias Lange, Steffen Liebergeld, April 9th, 2013, Droidcon 2013
  • 2. Why should I care?
  • 3.
  • 4. Mobile OS Market Share (2012) 2 % 4 % 4 % 5 % 17 % 68 % Android iOS Blackberry Symbian Windows Linux http://www.idc.com/getdoc.jsp?containerId=prUS23638712#.UUL-GaVW6-U
  • 5. Malware Distribution 2010 F-Secure Mobile Threat Report Q4/2012
  • 6. Malware Distribution 2011 F-Secure Mobile Threat Report Q4/2012
  • 7. Malware Distribution 2012 F-Secure Mobile Threat Report Q4/2012
  • 8. No!
  • 10. Agenda • Secure Boot • Memory Management Security Enhancements • Android Application Security • Android Security Problems • Future Improvements
  • 12. Boot Process 1. Initial Bootloader 2. Bootloader 3. Kernel 4. Android init 5. Android platform boot
  • 13. Boot Architecture SoC DRAM DRAM CPU Controller Security Controller Boot Device Subsystem NAND Bootloader Signature SD/MMC ROM eMMC Kernel IBL USB OTG Signature OM Pin
  • 14. Signature Check SHA1 Image Digest/ Image Hash Compare Check with Public Key Signature Signature Digest/ Hash
  • 16. Protection Against Memory Corruption • Since 2.3 Gingerbread • Android >= 4.1 • eXecute Never (XN) • Position Independent Executable (PIE) • mmap_min_addr • Read-only Relocations (RELro) • Android >= 4.0 • Address Space Layout Randomization (ASLR)
  • 17. ASLR • Randomize mapping location of memory • Stack, heap, libs, executable • Primarily provided by Linux kernel • Usually combined with NX
  • 18. Randomization in Gingerbread • cat /proc/PID/maps (vold) 00008000-00028000 r-xp 00000000 b3:09 450 /system/bin/vold 00028000-00029000 rw-p 00020000 b3:09 450 /system/bin/vold afd00000-afd40000 r-xp 00000000 b3:09 743 /system/lib/libc.so afd40000-afd43000 rw-p 00040000 b3:09 743 /system/lib/libc.so b0001000-b0009000 r-xp 00001000 b3:09 375 /system/bin/linker b0009000-b000a000 rw-p 00009000 b3:09 375 /system/bin/linker bebcc000-bebed000 rw-p 00000000 00:00 0 [stack] 00029000-00032000 rw-p 00000000 00:00 0 [heap] 00008000-00028000 r-xp 00000000 b3:09 450 /system/bin/vold 00028000-00029000 rw-p 00020000 b3:09 450 /system/bin/vold afd00000-afd40000 r-xp 00000000 b3:09 743 /system/lib/libc.so afd40000-afd43000 rw-p 00040000 b3:09 743 /system/lib/libc.so b0001000-b0009000 r-xp 00001000 b3:09 375 /system/bin/linker b0009000-b000a000 rw-p 00009000 b3:09 375 /system/bin/linker becf2000-bed13000 rw-p 00000000 00:00 0 [stack] 00029000-00032000 rw-p 00000000 00:00 0 [heap]
  • 19. Randomization in ICS • cat /proc/PID/maps (vold) 00008000-0001f000 r-xp 00000000 103:01 436 /system/bin/vold 0001f000-00020000 rw-p 00017000 103:01 436 /system/bin/vold 400b7000-400f9000 r-xp 00000000 103:01 891 /system/lib/libc.so 400f9000-400fc000 rw-p 00042000 103:01 891 /system/lib/libc.so b0001000-b0009000 r-xp 00001000 103:01 357 /system/bin/linker b0009000-b000a000 rw-p 00009000 103:01 357 /system/bin/linker beabc000-beadd000 rw-p 00000000 00:00 0 [stack] 00020000-0002f000 rw-p 00000000 00:00 0 [heap] 00008000-0001f000 r-xp 00000000 103:01 436 /system/bin/vold 0001f000-00020000 rw-p 00017000 103:01 436 /system/bin/vold 400bc000-400fe000 r-xp 00000000 103:01 891 /system/lib/libc.so 400fe000-40101000 rw-p 00042000 103:01 891 /system/lib/libc.so b0001000-b0009000 r-xp 00001000 103:01 357 /system/bin/linker b0009000-b000a000 rw-p 00009000 103:01 357 /system/bin/linker bee36000-bee57000 rw-p 00000000 00:00 0 [stack] 00020000-0002f000 rw-p 00000000 00:00 0 [heap]
  • 20. Randomization in Jelly Bean • cat /proc/PID/maps (sleep 1000) 400e8000-40100000 r-xp 00000000 103:01 429       /system/bin/toolbox 40101000-40102000 r--p 00018000 103:01 429       /system/bin/toolbox 40102000-40104000 rw-p 00019000 103:01 429       /system/bin/toolbox 40093000-400d6000 r-xp 00000000 103:01 86        /system/lib/libc.so 400d6000-400d9000 rw-p 00043000 103:01 86        /system/lib/libc.so 40195000-401a8000 r-xp 00000000 103:01 889       /system/bin/linker 401a8000-401a9000 r--p 00012000 103:01 889       /system/bin/linker beb87000-beba8000 rw-p 00000000 00:00 0          [stack] 40046000-4005e000 r-xp 00000000 103:01 429       /system/bin/toolbox 4005f000-40060000 r--p 00018000 103:01 429       /system/bin/toolbox 40060000-40062000 rw-p 00019000 103:01 429       /system/bin/toolbox 40067000-400aa000 r-xp 00000000 103:01 86        /system/lib/libc.so 400aa000-400ad000 rw-p 00043000 103:01 86        /system/lib/libc.so 4011c000-4012f000 r-xp 00000000 103:01 889       /system/bin/linker 4012f000-40130000 r--p 00012000 103:01 889       /system/bin/linker bef0d000-bef2e000 rw-p 00000000 00:00 0          [stack]
  • 22. Bouncer • Scans and detects malware while uploading App to Market • App gets executed in emulator • Detection of emulator is easy • Since Jelly Bean 4.2 local version • Scans Apps from alternative app stores
  • 23. App Encryption • Introduced in Jelly Bean 4.1 • Encrypt paid Apps with device specic key • Disabled after bugs have been found
  • 25. Missing Updates • At least three parties involved • Google/OHA, OEM, Carrier • Fast product cycle • Carrier can block updates • Millions of devices with well known vulnerabilities
  • 26. Android Version Distribution Donut Eclair Froyo Gingerbread Honeycomb Ice Cream Sandwich Jelly Bean 4.1 Jelly Bean 4.2 0 12,5 25 37,5 50 http://developer.android.com/about/dashboards/index.html, March, 4th 2013
  • 27. OEM Extensions • Modications of the Android core • Samsung (/dev/exynos-mem, USSD) • Rootkits in OEM Apps • Bad software quality • Linux drivers
  • 28. Android Security Improvements
  • 29. New Features in Jelly Bean >= 4.2 • Secure USB debugging (whitelist for adb) • Better random number generator based on OpenSSL • SMS conrmation
  • 30. SEAndroid • Android combined with SELinux • Rumor has it: may in Android 5.0 • Samsung Knox
  • 31. Thank you! Q&A