Exploring SE for Android

William Confer, William Roberts

  • 出版商: Packt Publishing
  • 出版日期: 2015-02-27
  • 售價: $1,980
  • 貴賓價: 9.5$1,881
  • 語言: 英文
  • 頁數: 214
  • 裝訂: Paperback
  • ISBN: 1784390593
  • ISBN-13: 9781784390594
  • 相關分類: Android
  • 海外代購書籍(需單獨結帳)

相關主題

商品描述

Discover Security Enhancements (SE) for Android to build your own protected Android-based systems

About This Book

  • Learn the fundamental security models and motivations behind Linux, SELinux, and SE for Android.
  • Build and enable current security enhancements from the SE for Android project onto a working embedded UDOO board.
  • Discover how to leverage SE for Android to secure your own projects in powerful ways using this step by step guide.

Who This Book Is For

This book is intended for developers and engineers with some familiarity of operating system concepts as implemented by Linux. A basic background in C code would be helpful. Their positions range from hobbyists wanting to secure their Android powered creations to OEM engineers building handsets to engineers of emerging areas where Android is seeing growth.

What You Will Learn

  • Experiment with Linux and SELinux access controls
  • Build custom Android kernels
  • Backport SE for Android patches to different Android versions
  • Explore binder and property services, what they are, and how and why SELinux integrates them
  • Work with Android core internal systems like init and zygote
  • Learn how to keep pace with and navigate the details of fast moving open source projects
  • Overcome obstacles in policy development through directed experimentation

In Detail

You will start by exploring the nature of the security mechanisms behind Linux and SELinux, and as you complete the chapters, you will integrate and enable SE for Android into a System on Chip (SoC), a process that, prior to this book, has never before been documented in its entirety! Discover Android's unique user space, from its use of the common UID and GID model to promote its security goals to its custom binder IPC mechanism. Explore the interface between the kernel and user space with respect to SELinux and investigate contexts and labels and their application to system objects.

This book will help you develop the necessary skills to evaluate and engineer secured products with the Android platform, whether you are new to world of Security Enhanced Linux (SELinux) or experienced in secure system deployment.

商品描述(中文翻譯)

發現 Android 的安全增強功能 (SE),以建立自己的受保護的基於 Android 的系統

關於本書



  • 學習 Linux、SELinux 和 SE for Android 背後的基本安全模型和動機。

  • 將 SE for Android 專案中的當前安全增強功能應用於工作中的嵌入式 UDOO 開發板。

  • 通過這個逐步指南,發現如何利用 SE for Android 在強大的方式下保護自己的專案。

本書適合對象


本書適合具有一定操作系統概念(由 Linux 實現)的開發人員和工程師。具備 C 語言基礎將有所幫助。讀者的職位範圍從希望保護其 Android 創作的愛好者到建造手機的 OEM 工程師,以及 Android 正在增長的新興領域的工程師。

你將學到什麼



  • 實驗 Linux 和 SELinux 存取控制

  • 構建自定義 Android 內核

  • 將 SE for Android 的補丁移植到不同的 Android 版本

  • 探索 binder 和屬性服務,了解 SELinux 如何整合它們的原因和方式

  • 使用 Android 核心內部系統,如 init 和 zygote

  • 學習如何跟上並導航快速發展的開源專案的細節

  • 通過有針對性的實驗克服策略開發中的障礙

詳細內容


你將首先探索 Linux 和 SELinux 背後的安全機制的本質,並在完成各章節時,將 SE for Android 整合並啟用到一個片上系統 (SoC) 中,這是在本書之前從未完整記錄過的過程!探索 Android 獨特的用戶空間,從其使用常見的 UID 和 GID 模型來促進其安全目標,到其自定義的 binder IPC 機制。研究內核和用戶空間之間的界面,特別是與 SELinux 相關的上下文和標籤以及它們對系統對象的應用。

本書將幫助您開發評估和工程化 Android 平台上的安全產品所需的技能,無論您是對安全增強 Linux (SELinux) 的世界是新手還是在安全系統部署方面有經驗的人。