WIND RIVER SECURE ANDROID CAPABILITY



Similar documents
SECURITY: THE KEY TO AFFORDABLE UNMANNED AIRCRAFT SYSTEMS. By Alex Wilson, Director of Business Development, Aerospace and Defense

In-Depth Look at Capabilities: Samsung KNOX and Android for Work

Plain English Guide To Common Criteria Requirements In The. Field Device Protection Profile Version 0.75

THE RTOS AS THE ENGINE POWERING THE INTERNET OF THINGS

Using Linux in Medical Devices: What Developers and

Windows Phone 8 Security Overview

APPENDIX B1 - FUNCTIONALITY AND INTEGRATION REQUIREMENTS RESPONSE FORM FOR A COUNTY HOSTED SOLUTION

WIND RIVER INTELLIGENT DEVICE PLATFORM XT

The ForeScout Difference

Samsung Mobile Security

Security Guide. BlackBerry Enterprise Service 12. for ios, Android, and Windows Phone. Version 12.0

Mobile First Government

ForeScout MDM Enterprise

CS 356 Lecture 25 and 26 Operating System Security. Spring 2013

Embedded Java & Secure Element for high security in IoT systems

COMMONWEALTH OF PENNSYLVANIA DEPARTMENT S OF PUBLIC WELFARE, INSURANCE AND AGING

Kaspersky Security for Mobile Administrator's Guide

Patch and Vulnerability Management Program

SECURITY IN THE INTERNET OF THINGS

Hands on, field experiences with BYOD. BYOD Seminar

IBM Endpoint Manager for Mobile Devices

Mobile Device Management:

ios Security Decoded Dave Test Classroom and Lab Computing Penn State ITS Feedback -

BlackBerry Enterprise Service 10. Secure Work Space for ios and Android Version: Security Note

Symantec App Center. Mobile Application Management and Protection. Data Sheet: Mobile Security and Management

Addressing BYOD Challenges with ForeScout and Motorola Solutions

TCS Hy5 Presidio Your Mobile Environment, Your Way Configure, Secure, Deploy. Mobility Solutions

Analysis of advanced issues in mobile security in android operating system

SECURE IMPLEMENTATIONS OF CONTENT PROTECTION (DRM) SCHEMES ON CONSUMER ELECTRONIC DEVICES

Mobile Workforce. Connect, Protect, and Manage Mobile Devices and Users with Junos Pulse and the Junos Pulse Mobile Security Suite.

Development. SriSeshaa Technologies. Table of Contents

UNCLASSIFIED Version 1.0 May 2012

Mobile Device Management for CFAES

Deploy secure, corporate access for mobile device users with the Junos Pulse Mobile Security Suite

A Data Centric Approach for Modular Assurance. Workshop on Real-time, Embedded and Enterprise-Scale Time-Critical Systems 23 March 2011

Addressing NIST and DOD Requirements for Mobile Device Management

Reminders. Lab opens from today. Many students want to use the extra I/O pins on

Chris Boykin VP of Professional Services

Feature List for Kaspersky Security for Mobile

Norton Mobile Privacy Notice

Cisco Trust Anchor Technologies

BYOD: End-to-End Security

Comprehensive Security for Internet-of-Things Devices With ARM TrustZone

Mobile application testing for the enterprise

Cloud Computing for SCADA

Symantec Mobile Management 7.1

Samsung SDS. Enterprise Mobility Management

White Paper. Data Security. The Top Threat Facing Enterprises Today

Good for Enterprise Good Dynamics

Secure Your Mobile Workplace

Securing mobile devices in the business environment

SECURITY IN THE INTERNET OF THINGS

Securing your Virtual Datacenter. Part 1: Preventing, Mitigating Privilege Escalation

Trust Digital Best Practices

DEPLOYMENT. ASSURED. SEVEN ELEMENTS OF A MOBILE TEST STRATEGY. An Olenick & Associates White Paper

Working Together Managing and Securing Enterprise Mobility WHITE PAPER. Larry Klimczyk Digital Defence P:

An Integrated CyberSecurity Approach for HEP Grids. Workshop Report.

Università Degli Studi di Parma. Distributed Systems Group. Android Development. Lecture 1 Android SDK & Development Environment. Marco Picone

SENSE Security overview 2014

Protecting Your Organisation from Targeted Cyber Intrusion

eguide: Designing a Continuous Response Architecture Executive s Guide to Windows Server 2003 End of Life

10 BEST PRACTICES FOR MOBILE DEVICE MANAGEMENT (MDM)

Symantec Mobile Management for Configuration Manager 7.2

Securing Corporate on Personal Mobile Devices

10 best practice suggestions for common smartphone threats

Mobile App Containers: Product Or Feature?

Symantec Mobile Management 7.1

Symantec Mobile Management 7.2

Introduction to Android

Tutorial on Smartphone Security

Android on i.mx Applications Processors

Dell Client BIOS: Signed Firmware Update

Lecture Embedded System Security A. R. Darmstadt, Introduction Mobile Security

Control your corner of the cloud.

Mobile Application Testing

Kaspersky Fraud Prevention: a Comprehensive Protection Solution for Online and Mobile Banking

Mobile Device Management and Security Glossary

Creating and Using Databases for Android Applications

EECatalog SPECIAL FEATURE

This session was presented by Jim Stickley of TraceSecurity on Wednesday, October 23 rd at the Cyber Security Summit.

Ensuring the security of your mobile business intelligence

Security Security by Separation

FileDrawer An Enterprise File Sharing and Synchronization (EFSS) solution.

Windows Operating Systems. Basic Security

CPNI VIEWPOINT CONFIGURING AND MANAGING REMOTE ACCESS FOR INDUSTRIAL CONTROL SYSTEMS

Cyber Essentials Scheme

Deploying iphone and ipad Security Overview

Kaspersky Security for Mobile

Ensuring the security of your mobile business intelligence

Transcription:

WIND RIVER SECURE ANDROID CAPABILITY Cyber warfare has swiftly migrated from hacking into enterprise networks and the Internet to targeting, and being triggered from, mobile devices. With the recent explosion in the number of connected devices, security attacks can now be launched from anywhere, targeting any place. Securing mobile devices is crucial because the same capabilities that increase our social interactions and business effectiveness can be subverted and used for unintended and unapproved uses. As a widely deployed and robust open source platform, Android provides the ideal foundation for the integration of appropriate security controls for personal and business device protection as well as high-assurance and battlefield use cases. Wind River has combined our extensive experience in commercial Android with our capabilities in secure certified embedded systems to develop an advanced security strategy for Android platforms that also ensures compatibility with the commercial Android development model. This comprehensive strategy includes attack detection and prevention, device integrity, isolation techniques, and infrastructure security to protect data and devices from multiple threat vectors. Wind River Android Security Strategy Attack Detection and Prevention Device Integrity Isolation SE Android with enhancements Selective permissions Pre-install filter Secure boot Secure firmware management Cryptography Lightweight partitioning Hypervisor Infrastructure Security Secure Android Deployment Mobile device management Integrity and attestation Forensics Testing and Android compliance Certification and validation Audit Security Brief INNOVATORS START HERE.

ATTACK DETECTION AND PREVENTION Security threats against Android-based devices are extensive and include unauthorized access, data and device destruction, information disclosure, modification of information, and denial of service. Security Enhanced (SE) Android identifies and addresses critical gaps in the security of Android. Released by the National Security Agency (NSA), it consists of Linux kernel and Android user space modifications. Wind River enhances SE Android by implementing additional features to remove vulnerabilities and allow more specialized policy for a given use case, including the following: Semi-custom policy for downloaded applications Restricted privileges as demanded by most enterprises and IT organizations Code extensions to support standard Android drivers Initial security policies with Android Compatibility Test Suite (CTS) and Wind River Test Management for Android SE Android was released with a reference implementation to open source, and the Wind River enhancements fill the gaps between that release and the requirements of a commercial product. Further precautions can be implemented with deployment of pre-install filters managed by customizable policy to inspect software installation requirements and disallow installation of applications requiring access to restricted device capabilities like cameras, network access, or recording features. DEVICE INTEGRITY Mobile device software stacks consist of many layers of software, from low-level boot firmware through operating system kernels, system services, middleware, and applications. Attackers can exploit vulnerabilities in any of these areas to turn a threat into a successful attack. Secure boot provides the foundation of security by verifying each stage of the boot process before it is executed. This mechanism allows only authenticated software and prevents malicious code from being executed. Secure boot implements a chain of trust in which every component in the boot process measures the next one; if any component fails to pass signature verification, the boot process will respond appropriately. Secure Android firmware management is integrated with secure boot and provides additional protection with error tolerance for power off, low battery, corrupt package, and memory error, as well as policy that allows only authorized and signed update packages to access the device. Integrity mechanisms require robust cryptography features to ensure digital signatures and other protections are appropriately verified. Robust cryptography is not only essential to support integrity verification, it is also essential to fully protect data, software, device access, and communications. 2 Security Brief

ISOLATION Android is designed for a single domain where installed applications share system resources, limiting its flexibility for reusing the device for multiple purposes that span multiple domains or multiple users. Some existing multi-domain solutions rely on virtualization, with guests corresponding to different protected domains, typically causing significant overhead and complications whenever there is a need to share hardware resources. Lightweight partitioning (LWP) is a security isolation strategy that provides multiple encrypted partitions, keeping information safe and secure between them. For example, a project team sharing a tablet can set up multiple users, or one partition can be set up to secure personal information and another to secure corporate information. LWP protects data from leaking across partitions so that secure applications and data can be kept separate (isolated) from other partitions. Partition Transition Reinitialize Authenticate Decrypt Android Partition 1 Android Partition 2 Android Partition N Hardware Figure 1: Lightweight partitioning For more concurrent partitioning, Wind River delivers virtualization for Android with a type 1 real-time embedded hypervisor, providing a virtualization layer that partitions a single- or multi-core chip into multiple partitions with varying levels of protection and capabilities. With a small footprint and high performance, Wind River Hypervisor offers all the benefits of embedded virtualization for Android: A faster and more reliable virtualization environment Lightweight and easy configuration and deployment on complex devices Secure environment separation between different operating systems, components, and applications 3 Security Brief

Android Partition 1 Android Partition N Device Securtiy Partition I/O Partition Device Attestation Device Audit Services Device Sanitation Services Guard/Filter I/0 Servers and Middleware I/0 Drivers Guest OS Guest OS Hypervisor Hardware Figure 2: Hypervisor isolation approach INFRASTRUCTURE SECURITY A comprehensive Android security strategy needs to address operation of the device within a greater networked system. Mobile device management (MDM) systems deliver important security features such as Android firmware distribution, security policy distribution, device inventory, and remote lock and wipe to stolen devices. These MDM capabilities ensure that system threat detection and prevention goals can be achieved. Wind River has implemented a lightweight MDM system that can be used to enhance control of the Android device, consisting of both server and client components. If you have an existing MDM system, the client portion is easily adaptable to connect to your in-house or third-party MDM solution. Authentication and identification are key security capabilities with a broad set of features and overlapping functionality. One aspect of authentication and identification protects the resources on the device by allowing access only to known users with physical access to the device; users who cannot demonstrate that they are valid users must not be allowed access to the resources of the device. Another aspect protects the resources on the device by allowing access only to known remote systems; a device must not perform MDM actions unless it can be assured that the MDM server is the one it claims to be. A third aspect of authentication and identification protects the resources on a remote server or system from a compromised device; the device must authenticate to the remote server that it is the one it claims to be and that the user has the proper credentials to access the remote system s resources. To better support system security, measurement and attestation should be added to the secure boot process at startup to take a measurement of code and state and provide evidence of authenticity. These actions are repeated periodically during device operation, and results are reported back to the enterprise management system. 4 Security Brief

WIND RIVER ANDROID AND SECURITY EXPERIENCE Founding member of the Open Handset Alliance (OHA) Original Google commercialization partner 100+ Android projects since 2007 Contributor to the U.S. National Security Agency s SE Android project FIPS 140-2 certified cryptography Common Criteria certification Wurldtech s Achilles certification SECURE ANDROID DEPLOYMENT Adding advanced security capability to Android devices while still maintaining conformance to the Android development model introduces increased complexities for testing, validation, and certification of these devices. Wind River offers a complete automated test environment, Wind River Test Management for Android, to prove compliance with Google s Android Compatibility Test Suite (CTS), measure performance, and ensure the stability of devices running Android. Test Management for Android incorporates existing tests and test frameworks, and includes compliance test suites that can all be extended to support certification and validation processes. Communication Channel (Including Power Supply Control) Android Device Wind River Test Management for Android Wind River UX Test Development Kit for Android Monkey Tool Tests Alarm Camera Media Player Browser Clock Messaging Calculator Contacts Phone Calendar Email Settings Run-Time Drivers Open Source Tests/Tools Wind River Test Suites/Tools Device Management Engine (DME) TETware Stress Tests Instrumentation Tests Standard Android Compatibility Test Suite (CTS) Wind River Android Device Characterization Suite (ADCS) Bluetooth Location Stability Camera Media Transfer Graphics SMS Wi-Fi Optimized CTS Wind River Hardware Abstraction Layer (HAL) Suite Audio Flashlight Lights Sensors Battery Framebuffer Power Management Touchscreen Bluetooth GPS RIL Vibrator Camera Keyboard RTC Wi-Fi LTP IOZone IPerf Figure 3: Wind River Test Management for Android Certification and validation of secure devices is assured and expedited by comprehensive tool suites managed by expert security resources. Wind River Professional Services can support medium- to high-assurance certification efforts for secure Android platforms, as well as auditing and forensic activities and requirements. WIND RIVER SECURE MOBILITY VISION The challenge of securing the Android commercial capability and mobile platform requires endto-end system threat assessment and incorporation of embedded device strategies to effectively thwart cyberattacks and maintain secure communications. Wind River takes a holistic approach that includes threat and risk assessment services; technology solutions that counter security threats yet still deliver the benefits of commercial mobile platforms; and testing and verification frameworks that enable secure devices to be quickly verified, approved, and deployed. Wind River is a world leader in embedded and mobile software. Wind River has been pioneering computing inside embedded devices since 1981, and its technology is found in more than 1 billion products. Wind River is headquartered in Alameda, California, with offices in more than 20 countries. To learn more, visit Wind River at www.windriver.com. 2012 Wind River Systems, Inc. The Wind River logo is a trademark of Wind River Systems, Inc., and Wind River and VxWorks are registered trademarks of Wind River Systems, Inc. Rev. 11/2012

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information