This course aims to teach learners about the Android permissions mechanism and the importance of creating a permission map for securing Android applications. The course covers methodologies for building an Android permission map, discusses the deficiencies in existing methods, and emphasizes the need for a centralized group, preferably Google, to manage permission mapping. The intended audience for this course includes application security testers, app developers, and security-conscious Android users. The teaching method involves a 44-minute talk by Andrew Reiter, a security researcher at Veracode, providing insights and recommendations on Android permission mapping.
Overview
Syllabus
2013 - Drawing the map - Outlining Android permissions mechanism - Andrew Reiter
Taught by
LASCON