Hi The android dev guide mentions on the Data Storage page that "On Android, all application data (including files) are private to that application. " 1. I wish to know how this is ensured. 2. Also, does this mean that if an application sa ...

Is there a way to find what are the root certificates currently installed on a android device? -Dan

[link] Any ideas about this? Personally I think jail-breaking should be harder to do if the root of trust started in HW. I you can install anything, it seems that all bets are off and that should be limited to "dev-phones". AR

Android Donut adds support for enterprise security for WiFi, and which uses keystore security tool. I want to connect my Android phone to EAP TLS AP, and how do I install certificates? Does anyone have some ideas about that? Thanks a lot walker

Hi all, I am looking to contribute to Android security and at the same time write my thesis. I have experience in C++ programming as well as other languages; and also in coporate security management. Any ideas of topics where I could help? Luis

Curiously, has anyone discussed the fact that when the user selects "require pattern" and deselects "use visible pattern", and the wrong pattern is entered, the screen shows the incorrectly entered pattern? I've found that I freq ...

The security keys under the directory android\build\target\product \security is used to sign the apk for defferent security level. do they need to generate some new keys of theirself or do not change it for some compatible problems? thank you cht

Hi all I am a masters student at IIT Delhi. I want to work on Android Security as a part of my Major Project (duration 8 to 10 months). Please suggest me some reference materials and ideas. Thanks & Regards Ashish

I imagine some folks on this list have seen this (or a similar story): [link] I haven't investigated it in any depth, but my speculation is that the exploitation of the referenced kernel privilege escalation vulnerability ( [link] ) results

Hi everybody, can someone tell me where to find the "requestEnterSimPin" in the Android source code. I would like to change the regular PIN-Entry to a graphical password. Where do I find the source code in Android ? Where do I have to chan ...