Unix Domain Socket - A Hidden Door Leading to Privilege Escalation in the Android Ecosystem

Explore the security implications of Unix domain sockets (UDS) in the Android ecosystem through this 43-minute Black Hat conference talk. Delve into how UDS, an important inter-process communication mechanism, can become a hidden attack surface leading to privilege escalation. Discover why vendors often overlook UDS security due to SELinux restrictions and how insecure design, implementation, and misconfiguration can introduce vulnerabilities. Learn from security experts Dongxiang Ke, Lewei Qu, Han Yan, and Daozheng Lin as they uncover the potential risks and discuss strategies to mitigate these hidden threats in Android systems.

Unix Domain Socket: A Hidden Door Leading to Privilege Escalation in the Android Ecosystem