SEforAndroid

From SELinux Wiki
Revision as of 14:50, 7 May 2018 by StephenSmalley (Talk | contribs)

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to: navigation, search

Security Enhancements (SE) for Android™ was a NSA-led project that created and released an open source reference implementation of how to enable and apply SELinux to Android, made the case for adopting SELinux into mainline Android, and worked with the Android Open Source Project (AOSP) to integrate the changes into mainline Android. As a result, SELinux is now a core part of Android. See https://source.android.com/security/selinux/ for further information on SELinux in Android.

SE for Android was originally called Security Enhanced Android (SE Android) but was renamed to comply with the Android brand guidelines. Hence, you will see the older name in many of the presentations and papers below.

SE for Android used to maintain its own source code repositories on bitbucket.org but these have been removed since the code has all been merged to AOSP.

Presentations and papers describing SE for Android included:

  • The Case for SE Android, Linux Security Summit 2011, Sep 2011. Slides
  • The Case for Security Enhanced (SE) Android, Android Builders Summit 2012, Feb 2012. Slides
  • Security Enhanced (SE) Android, LinuxCon North America 2012, Aug 2012. Slides
  • Middleware MAC for Android, Linux Security Summit 2012, Aug 2012. Slides
  • Security Enhanced (SE) Android: Bringing Flexible MAC to Android, 20th Annual Network and Distributed System Security Symposium (NDSS '13), Feb 2013. Paper and Slides
  • Laying a Secure Foundation for Mobile Devices, 20th Annual Network and Distributed System Security Symposium (NDSS '13), Feb 2013. Slides
  • Security Enhancements (SE) for Android, Android Builders Summit 2014, Apr 2014. Slides
  • Protecting the Android TCB with SELinux, Linux Security Summit 2014, Aug 2014. Slides
  • SELinux in Android Lollipop and Marshmallow, Linux Security Summit 2015, Aug 2015. Slides

Further talks describing the impact of SELinux on Android security and further SELinux development in Android include:

  • ioctl command whitelisting in SELinux, Linux Security Summit 2015, Aug 2015. Slides
  • Android: protecting the kernel, Linux Security Summit, Aug 2016. Slides
  • Honey I Shrunk the Attack Surface: Adventures in Android Security Hardening, Black Hat USA 2017, July 2017. Slides
  • SELinux in Android Oreo or: How I Learned to Stop Worrying and Love Attributes, Linux Security Summit 2017, Sep 2017. Slides

(Android is a trademark of Google LLC)