Hi all,
I am new to Android R&D and trying to understanding security
enforcement in Android.
As I read from "Understanding Android Security" (Pennsylvania State
University), ICC could be considered as Mandatory Access Control
(MAC) implementation for components and services. However, this
document does not mention about the communication between pure-Linux
processes and Android components or services.
For example:
The installd service is implemented by C and does not have
manifest file to declare permission to access other Android components
and services such as contact, internet,...
Could I develop a service like installd and fire intents to other
Android component and services without permission checking?
Best regard,
Duy Vu
--
You received this message because you are subscribed to the Google Groups
"Android Security Discussions" group.
To post to this group, send email to [email protected].
To unsubscribe from this group, send email to
[email protected].
For more options, visit this group at
http://groups.google.com/group/android-security-discuss?hl=en.
