Treble or Trouble - Where Android's Latest Security Enhancements Help And Where They Fail
Offered By: BSidesLV via YouTube
Course Description
Overview
Explore Android's latest security enhancements and their effectiveness in this 19-minute conference talk from BSidesLV 2018. Delve into topics such as SELinux implementation, Stagefright, and Project Treble's impact on Android security. Examine the MediaDrmServer's decrypt method and analyze the CVE-2017-13253 bug, including its buffer overflow vulnerability. Gain insights into how Project Treble's refactoring affects security measures and understand why MediaDrmServer serves as a prime example. Conclude with a comprehensive overview of Android's evolving security landscape and its implications for developers and users alike.
Syllabus
Intro
Security enhancements
SELinux in Android
Stagefright
Project Treble as a security enhancement
MediaDrmServer's decrypt method
The bug - CVE-2017-13253
Buffer overflow
The effect of Project Treble's refactoring
MediaDrmServer is just an example
Conclusion
Taught by
BSidesLV
Related Courses
Software Design Threats and MitigationsUniversity of Colorado System via Coursera Information Security - 5 - Secure Systems Engineering
Indian Institute of Technology Madras via Swayam Unlocking Information Security I: From Cryptography to Buffer Overflows
Tel Aviv University via edX Unlocking Information Security
Tel Aviv University via edX Buffer Overflow Exploits (Arabic) | OSCP Preparation
Udemy