Droidcedas : Android Safety Internals

If you lot convey been next this weblog for a while, you lot powerfulness convey noticed that in that place haven't been many novel posts inward the past times few months. There are ii reasons for this: me beingness lazy as well as me working on a book. The books is progressing nicely, only is however a long agency from beingness finished, as well as so updates volition likely maintain to survive spotty for a while.

What is this all about?

The mass is a continuation of my call for to empathise how Android plant and, equally you lot may convey guessed already, is called "Android Security Internals". That's a somewhat ambitious title, only it reflects my goal -- to nowadays both an overview of Android's safety architecture, as well as to exhibit how its key components are implemented as well as interoperate. Meeting this goal requires starting amongst the most cardinal concepts such equally Binder IPC, sandboxing, file ownership as well as permissions, as well as looking into key organization services that bind the OS together, such equally the PackageManagerService as well as ActivityManagerService. After (hopefully) explaining the fundamentals inward sufficient detail, the mass goes on to utter over higher score features such equally credential storage, describe of piece of job concern human relationship management as well as device policy support. Security features added inward recent versions, for example SELinux as well as verified kick are also introduced. While the mass does comprehend topics traditionally associated amongst 'rooting' such equally unlocking the bootloader, recovery images as well as superuser apps, this is non a principal topic. Finding as well as developing exploits inward fellowship to gain beginning access is non discussed at all, as well as so if you lot are interested inward these topics you lot powerfulness desire to alternative upward the of late released Android Hacker's Handbook, which covers them real good as well as inward ample detail. Finally, almost all of the fabric is based on analysis of as well as experimentation amongst AOSP source code, as well as hence almost no vendor extensions or non-open source features are covered.

The book

The mass is beingness produced past times No Starch Press, who convey a long history of publishing groovy technical books, as well as convey lately been introducing some genuinely beautiful Lego books equally well. On give of that, they are a existent pleasance to travel with, as well as so arrive at telephone shout out upward them outset if you lot always catch writing a book. 

The mass is scheduled for September 2014, hopefully I'll survive able to goal it on fourth dimension to run across that date. If that sounds similar a long wait, in that place is skilful news: the mass is available via No Starch's Early Access program as well as you lot tin flame read the outset span of chapters correct now. New chapters volition survive made available ane time they are ready. While in that place is however a lot of travel to survive done, the mass does already convey a cover, as well as a groovy ane at that: 

While I can't utter over progress inward detail, the improve business office of the mass is done as well as is inward diverse stages of editing as well as review. Here is the electrical flow tabular array of contents, discipline to change, of course, only likely null also drastic.

Update 2014/10/24: The mass has directly been released.

Table of contents

Chapter 1: Android's Security Model
Chapter 2: Permissions
Chapter 3: Package Management
Chapter 4: User Management
Chapter 5: Cryptographic Providers
Chapter 6: Network Security as well as PKI
Chapter 7: Credential Storage
Chapter 8: Online Account Management
Chapter 9: Enterprise Security
Chapter 10: Device Security
Chapter 11: NFC as well as Secure Elements
Chapter 12: SELinux
Chapter 13: Device Updates as well as Root Access

If you lot convey establish this weblog interesting or helpful at ane fourth dimension or another, hopefully this mass is for you. While some of the fabric is based on previous weblog posts, it has been largely re-written as well as extended, as well as most importantly professionally edited (thanks Bill!) as well as reviewed (thanks Kenny!), as well as so it should survive both much easier to read as well as to a greater extent than accurate. Most of the fabric is completely novel as well as written alone for the book.

That's it for now, major updates volition survive posted here, to a greater extent than kid ones via my Google+ account. Finally, arrive at follow No Starch Press on Twitter or subscribe to their newsletter to larn updates nearly upcoming books as well as Early Access releases.

0 Komentar untuk "Droidcedas : Android Safety Internals"

Back To Top