Hi Nick, The idea is to make an app that contains an app. For example lets say i make a secure pdf viewer application with some confidential files, i do not want the user to copy anything from the pdf file and paste it anywhere outside the container in any third party apps except the apps inside the container. To combat this scenaro, is it possible to implement a container outside the app that has custom restrictions which prevents unauthorized access, data leakage etc.?
Regards Abhinav On Thu, Nov 8, 2012 at 10:17 PM, Nick Kralevich <[email protected]> wrote: > > Hi Abhi, > > Can you clarify exactly what your threat model is? Against what attack is > your app trying to defend against? > > All Android applications run in an Android sandbox. Android sandboxes are > implemented as separate Linux UIDs. All files / directories created by your > app are isolated from other apps unless you explicitly share them. Other > apps cannot access your confidential data absent a compromise of the > Android security model (for example, rooting). > > It's not clear from your brief e-mail below why the default sandbox is > insufficient to address your attack scenario. > > -- Nick > > On Thu, Nov 8, 2012 at 6:57 AM, Abhi <[email protected]> wrote: > >> Is containerization of android apps possible such that they run under >> restricted sandboxes? I have seen some discussions over these but I could >> not actually find any true solution. >> If its possible then How may we accomplish containerization/sandboxing >> over apps? Any help would be appreciable >> >> -- >> You received this message because you are subscribed to the Google Groups >> "Android Security Discussions" group. >> To view this discussion on the web visit >> https://groups.google.com/d/msg/android-security-discuss/-/ZnP7STMclm4J. >> To post to this group, send email to >> [email protected]. >> To unsubscribe from this group, send email to >> [email protected]. >> For more options, visit this group at >> http://groups.google.com/group/android-security-discuss?hl=en. >> > > > > -- > Nick Kralevich | Android Security | [email protected] | 650.214.4037 > > -- You received this message because you are subscribed to the Google Groups "Android Security Discussions" group. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/android-security-discuss?hl=en.
