YoVDO

Year in Review - Android Kernel Security

Offered By: Linux Foundation via YouTube

Tags

Conference Talks Courses Data Analysis Courses Software Engineering Courses Android Security Courses Control-Flow Integrity Courses Linux Kernel Security Courses

Course Description

Overview

Explore Android kernel security in this 32-minute conference talk by Google engineers Jeff Vander Stoep and Sami Tolvanen. Dive into the details of kernel vulnerabilities, analyze reported security bugs, and evaluate the effectiveness of recent mitigations. Learn about new kernel security measures introduced in the Android Open Source Project and discover the kernel security wishlist. Gain insights into attack surface reduction, Android Oreo's security improvements, and Control Flow Integrity (CFI) implementation. Understand how the Linux kernel serves as Android's trusted computing base and primary enforcer of its security model, while also being a prime target for privilege escalation attacks.

Syllabus

Intro
Data Source
Attack Surface Reduction
Android Oreo
Kernel Mitigations
Kernel Vulnerabilities
CFI Control Flow Integrity
Questions


Taught by

Linux Foundation

Tags

Related Courses

Enforcing Unique Code Target Property for Control-Flow Integrity
Association for Computing Machinery (ACM) via YouTube Current Status of RISC-V Security Mechanisms - Nick Kossifidis, FORTH
TheIACR via YouTube Two-Faces of WASM Security
Security BSides San Francisco via YouTube Taking Kernel Hardening to the Next Level
Black Hat via YouTube The Power of Data-Oriented Attacks - Bypassing Memory Mitigation Using Data-Only Exploitation Techniques
Black Hat via YouTube