Using a tool to make statical analysis of apk, I noticed a strange behaviour. There is often a mismatch between the permission declared in the manifest and the permissions required by application in dalvik virtual machine. So, the application can require, for example, the access to external memory without declaring permission in the manifest. Is it a "normal" behaviour"? I supposed the application can use only the API associated to the permissions declared in the manifest, instead, from real tests, it seems it is false. Thanks in advance, cheers
-- You received this message because you are subscribed to the Google Groups "Android Security Discussions" group. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/android-security-discuss?hl=en.
