Google provides Android kernel of supplementary protection

Jul

29

2016

The Android developers have taken a number of additional measures to better protect the Linux operating system kernel. They do this, inter alia, by limiting access to the kernel.

Developer Jeffrey Vander Stoep explains that Android for maintaining the security policy depends on the Linux kernel. For example, it ensures the protection of memory processes in user space , which is separated for safety of kernel space. One of the measures is to limit the access to the kernel memory in userspace. This makes attacks more difficult, because attackers thus able to exert less control over kernel memory.

Also, there is more protection against stack buffer overflows made. In addition, developers have access to the kernel is limited and thus reduces the attack surface. For example, they did by switching to Android Nougat performance tool ‘perf’ to users. For developers, however, it remains accessible. By removing certain code or restrict access to entry points, there are fewer opportunities to attack a system.

So would many in Android kernel vulnerabilities stem from drivers and using the ioctl can be reached -systemcall. userland applications can send requests to the kernel through a system call. Using a whitelist, the developers want these calls to restrict only the essential parts for apps from third parties.

Viewing:-95

In: Technology & Gadgets Asked By: [15780 Red Star Level]

Answer this Question

You must be Logged In to post an Answer.

Not a member yet? Sign Up Now »