Home » Updates » Overview about Android and its Security

Android is an open source mobile platform and Android applications make use of advanced hardware and software, local and served data, released by the platform to bring innovation, nascence and value to users. To protect that value, the platform offers a certain application environment in order to ensure security to the users, the device, data, applications, and the network. But being an open source, it’s quite difficult to maintain a robust security and for such protection, substantial security architecture and rigorous security programs are necessary.

android_security

Android is designed with multi-layered security along with the flexibility expected for an open platform, while endowing maximum possible protection for all users of the platform. Android was designed and developed by developers with keeping developers in mind and its security controls were designed to decrease the plummet on developers. Security-savvy developers can rely on its flexible security controls and easily work with. And its safe defaults protect less familiar developers as well.

Android developers kept the users in mind before designing the platform and they provided visibility to the users into how applications work, and how to control over these applications. The security architecture and the design of the Android also includes the expectation that hackers and attackers would try to perform common attacks and indulge the device users to install malware via social engineering attacks, and attacks on third-party applications. Android was designed to take the corrective actions and limit the impact of the attack of malware and also reduce the probability of such attacks

The various sections of Android are discussed below along with the security features considered at various levels of the Android software stack. This platform is designed and composed in such a way that each of its components remains secure. All code above the Linux Kernel is restricted and protected by the Application Sandbox apart from a small amount of Android OS code running as root. So here is an overview of the main building blocks of the Android platform:

Android Operating System

android_logo

The core of this platform is built on top of the Linux kernel. All device resources, such as camera functions, GPS data, telephony functions, Bluetooth functions, network connections, and much more are accessed through the operating system.

Device Hardware

hardware

Android runs on a wide range of hardware configurations like smart phones, tablets, and set-top-boxes. Although Android is processor-agnostic OS, but it also takes advantage of a few hardware-specific security capabilities.

Android Application Runtime

Most of the applications which run on Android are written in the Java programming language. These Java written applications run in the Dalvik virtual machine. However, some applications, including core Android applications and services are native applications or include native libraries. But both native applications and Dalvik run within the same secure environment, restricted within the Application Sandbox. Applications get a dedicated part of the filesystem to write private data, including raw files and databases. Android applications can extend the core Android operating system and basically there are two primary sources for applications:

  • Pre-Installed Applications

Pre-loaded-Apps

Android offers a set of pre-installed applications including phone, email, web browser, calendar, and contacts. These applications provide key capabilities to the devices as well as the user which also let you access other applications too. Pre-installed applications may be developed by an OEM for a specific device or may be a part of the open source Android platform.

  • User-Installed Applications

User loaded apps

Android provides an open development environment which makes your device compatible with various third-party applications. Google Play offers users multiple applications, plus, Google provides a set of cloud-based services which can be accessed and used by the users on any compatible Android device. Google’s primary services are:

Google Play

Google play

Google Play is like a store which has a collection of services that allow users to find, install, and buy applications from their Android device or the web. Google Play is like a source which bridges the scope of reach between the app developers and potential Android users. Plus, Google Play also provides community review, application security scanning, application license verification, and other security services.

Android Updates

android update

This service provides new capabilities and security updates to Android devices which deliver updates through the web or over the air (OTA).

Application Services

application_services

Frameworks let Android applications to access cloud capabilities like keeping the back up of the application data and settings, and cloud-to-device messaging (C2DM) for push messaging. Although these services are not part of the Android Open Source Project, but they are relevant to the security of most Android devices.

Taylor Olivia author of this article has written several dozen articles on computer repair, networking, android applications, and much more.  In this article she discussed about android and its securities and she also discuss about virus removal and data recovery tips and tricks.