YoVDO

Treble or Trouble - Where Android's Latest Security Enhancements Help And Where They Fail

Offered By: BSidesLV via YouTube

Tags

Security BSides Courses Software Development Courses Cybersecurity Courses Buffer Overflow Courses Android Security Courses SELinux Courses

Course Description

Overview

Explore Android's latest security enhancements and their effectiveness in this 19-minute conference talk from BSidesLV 2018. Delve into topics such as SELinux implementation, Stagefright, and Project Treble's impact on Android security. Examine the MediaDrmServer's decrypt method and analyze the CVE-2017-13253 bug, including its buffer overflow vulnerability. Gain insights into how Project Treble's refactoring affects security measures and understand why MediaDrmServer serves as a prime example. Conclude with a comprehensive overview of Android's evolving security landscape and its implications for developers and users alike.

Syllabus

Intro
Security enhancements
SELinux in Android
Stagefright
Project Treble as a security enhancement
MediaDrmServer's decrypt method
The bug - CVE-2017-13253
Buffer overflow
The effect of Project Treble's refactoring
MediaDrmServer is just an example
Conclusion


Taught by

BSidesLV

Related Courses

Early Detection through Deception
YouTube
Hack for Show, Report for Dough - Brian King
YouTube
Blue Teamin on a Budget of Zero - Kyle Bubp
YouTube
Windows Event Logs - Zero to Hero
YouTube
Weaponizing Splunk - Using Blue Team Tools for Evil
YouTube