SlideShare a Scribd company logo

Android overview

Download as PPTX, PDF
Mostofa Kamal Rasel Rasel
Mostofa Kamal Rasel Rasel

Android Course Overview

Education
1 of 32
Android By Collin Donaldson With Strong Contributions From: Anthony Kopczyk
Architecture
Activity Life Cycle
Activity Life Cycle - onCreate • Set the Activity's content View; Event Listeners • Find references to any needed Views • Passed-in Bundle allows a programmer to restore the Activity to its previous status
Activity Life Cycle - onStart • Called when the Activity becomes visible • Initialize any properties requiring information from the Window and contained Views
Activity Life Cycle - onResume • Called when the Activity is visible and in the foreground • Initialize ability for user to interact with the Activity
Activity Life Cycle - onPause • Called when the Activity is no longer the foreground • Release system resources
Activity Life Cycle - onStop • Called when Activity is no longer visible • Perform larger operations like writing to a database • Save Activity's state for onStart
Activity Life Cycle - onDestroy • Called when the system is in need of resources • Last chance to free resources and avoid memory leaks
Activity Life Cycle
Views • A building block for UI components • Responsible for drawing and event handling • Each View has an id • findViewById(int) Text box, check box, radio button, time picker, and image view
XML • Eclipse IDE • Uses XML files to set up the mobile application Android Layout File
XML - Android Manifest • Contains properties of the application • Permissions, SDK, Icon, Activities Android Manifest File
XML - Layout • Defines the layout of the Activity • Set View id values • Could achieve the same results through java code Android Layout File
XML – Other Files • Menu – Defines the Menu to bring up • Dimens – Defines dimensions with names and values • Strings – Defines strings with names and values • Lint – Defines exclusion or customization of lint checks • Styles – Defines the style to use in the Activity • Attrs – Defines custom attributes that may be used in XML Layout files
Input Events • OnClickListener • OnLongClickListener • OnFocusChangeListener • OnKeyListener • OnTouchListener • OnCreateContextMenuListener
Input Events Pre-Click Post-Click
Intents • Starts an activity or service • Service – operates in the background without a UI • Intents can be sent to other Apps • sendBroadcast() • sendOrderedBroadcast( ) • sendStickyBroadcast()
Intents – Explicit vs. Implicit • Explicit Intents specify a component to start. • Implicit Intents give a general action to perform.
Intents - Intent-Filter • Specified in the Manifest file • Contains the types of Intents the app wants to receive • Allows one app to send an Intent to another • If no intent filters are specified the activity may only be started with an explicit Intent • To ensure security, always use explicit intents when starting a Service • Users can not see when a Service starts
Permission • Allows developers to use security features • Provides additional capabilities to consumers that otherwise would be impossible “A central design point of the Android security architecture is that no application, by default, has permission to perform any operations that would adversely impact other applications, the operating system, or the user”
Permission • When an Application is installed the consumer must accept the permissions requested by an application • Permissions are defined in the Manifest file
Permission  Facebook Messenger  Identity  Contacts/Calendar  Location  SMS  Phone  Photos/Media/Files  Camera/Microphone  Wi-Fi Connection Information  Device ID & Call Information • Angry Birds •Identity •In-app purchases •Location •Photos/Media/Files •Wi-Fi Connection Information •Device ID & Call Information
Permission • Camera/Microphone • Allows consumers to use video chat • Photos/Media/Files • Allows consumers to send pictures they have previously taken • In order to give access, one must become more vulnerable – like opening ports on your router
Permission • Using Intents and Permissions a developer can make his/her app call a phone number.
Permission Activity Class
Permission Manifest File
Rooting/JailBreaking • Rooting is the process of gaining root (a.k.a. administrator or super user) to a smartphone. • By default, all smartphones only give user’s “guest” privileges. • This is for both safety reasons and to prevent users from doing things developers/carriers don’t like (i.e. getting rid of their bloatware).
Pros and Cons to Root Pros • Download more apps and use existing apps to fullest potential • Flash custom ROMs • Access locked hardware/software features • Tune performance • No more bloatware • Wi-Fi/Bluetooth Tethering • Use apps designed for other phones/carriers • Install apps to an SD card Cons • If done incorrectly, can possibly brick phone • Voids any warranties you have (even if you reverse the root) • Less stable/more bugs
General Security Vulnerabilities • Flaws in Android OS itself • Flaws in phone software/firmware • Conventional browser based virus • Vulnerabilities within downloaded apps • Unconventional attacks (injecting code into accelerometers i.e.)
Specific Vulnerabilities • Backdoor.AndroidOS.Obad.a does not have an interface and works in background mode, making it difficult to analyze, but that was only part of the challenge, according to Unuchek. The application exploits an error in the DEX2JAR software – generally used by researchers to convert APK files into the Java Archive (JAR) format) – that disrupts the conversion of Dalvik bytecode into Java bytecode and makes it difficult to run a statistical analysis of the Trojan. • Obad.a also targets an error in Android’s processing of the AndroidManifest.xml file, which exists in every Android application to describe the application’s structure, define its launch parameters and more. Although Obad.a modifies AndroidManifest.xml so that it doesn’t comply with Google standards, the vulnerability enables it to still be processed correctly, complicating any attempt to run dynamic analysis on the application.
Next Time • We will use a Metasploit (with a specific module) to attack an android device. • The “android device” will be a virtual android machine running on an emulator • We may also write a virus and Python and deploy it to a device.

Recommended

Lick my Lollipop
Lick my LollipopLick my Lollipop
Lick my LollipopTamara Momčilović
 
Is Your Mobile App Secure?
Is Your Mobile App Secure?Is Your Mobile App Secure?
Is Your Mobile App Secure?Sam Bowne
 
CNIT 128 6. Analyzing Android Applications (Part 3 of 3)
CNIT 128 6. Analyzing Android Applications (Part 3 of 3)CNIT 128 6. Analyzing Android Applications (Part 3 of 3)
CNIT 128 6. Analyzing Android Applications (Part 3 of 3)Sam Bowne
 
CNIT 128: 3. Attacking iOS Applications (Part 2)
CNIT 128: 3. Attacking iOS Applications (Part 2)CNIT 128: 3. Attacking iOS Applications (Part 2)
CNIT 128: 3. Attacking iOS Applications (Part 2)Sam Bowne
 
CNIT 128 7. Attacking Android Applications (Part 1)
CNIT 128 7. Attacking Android Applications (Part 1)CNIT 128 7. Attacking Android Applications (Part 1)
CNIT 128 7. Attacking Android Applications (Part 1)Sam Bowne
 
CNIT 128 8. Identifying and Exploiting Android Implementation Issues (Part 1)
CNIT 128 8. Identifying and Exploiting Android Implementation Issues (Part 1)CNIT 128 8. Identifying and Exploiting Android Implementation Issues (Part 1)
CNIT 128 8. Identifying and Exploiting Android Implementation Issues (Part 1)Sam Bowne
 
Google android os
Google android osGoogle android os
Google android osKirti Choudhary
 
CNIT 128 6. Analyzing Android Applications (Part 1)
CNIT 128 6. Analyzing Android Applications (Part 1)CNIT 128 6. Analyzing Android Applications (Part 1)
CNIT 128 6. Analyzing Android Applications (Part 1)Sam Bowne
 

Recommended

Lick my Lollipop
Lick my LollipopLick my Lollipop
Lick my LollipopTamara Momčilović
 
Is Your Mobile App Secure?
Is Your Mobile App Secure?Is Your Mobile App Secure?
Is Your Mobile App Secure?Sam Bowne
 
CNIT 128 6. Analyzing Android Applications (Part 3 of 3)
CNIT 128 6. Analyzing Android Applications (Part 3 of 3)CNIT 128 6. Analyzing Android Applications (Part 3 of 3)
CNIT 128 6. Analyzing Android Applications (Part 3 of 3)Sam Bowne
 
CNIT 128: 3. Attacking iOS Applications (Part 2)
CNIT 128: 3. Attacking iOS Applications (Part 2)CNIT 128: 3. Attacking iOS Applications (Part 2)
CNIT 128: 3. Attacking iOS Applications (Part 2)Sam Bowne
 
CNIT 128 7. Attacking Android Applications (Part 1)
CNIT 128 7. Attacking Android Applications (Part 1)CNIT 128 7. Attacking Android Applications (Part 1)
CNIT 128 7. Attacking Android Applications (Part 1)Sam Bowne
 
CNIT 128 8. Identifying and Exploiting Android Implementation Issues (Part 1)
CNIT 128 8. Identifying and Exploiting Android Implementation Issues (Part 1)CNIT 128 8. Identifying and Exploiting Android Implementation Issues (Part 1)
CNIT 128 8. Identifying and Exploiting Android Implementation Issues (Part 1)Sam Bowne
 
Google android os
Google android osGoogle android os
Google android osKirti Choudhary
 
CNIT 128 6. Analyzing Android Applications (Part 1)
CNIT 128 6. Analyzing Android Applications (Part 1)CNIT 128 6. Analyzing Android Applications (Part 1)
CNIT 128 6. Analyzing Android Applications (Part 1)Sam Bowne
 
CNIT 128 Ch 4: Android
CNIT 128 Ch 4: AndroidCNIT 128 Ch 4: Android
CNIT 128 Ch 4: AndroidSam Bowne
 
128-ch4.pptx
128-ch4.pptx128-ch4.pptx
128-ch4.pptxSankalpKabra
 
Hacker Halted 2014 - Reverse Engineering the Android OS
Hacker Halted 2014 - Reverse Engineering the Android OSHacker Halted 2014 - Reverse Engineering the Android OS
Hacker Halted 2014 - Reverse Engineering the Android OSEC-Council
 
Introduction to android sessions new
Introduction to android sessions newIntroduction to android sessions new
Introduction to android sessions newJoe Jacob
 
Introduction to Android Development and Security
Introduction to Android Development and SecurityIntroduction to Android Development and Security
Introduction to Android Development and SecurityKelwin Yang
 
Basics 4
Basics 4Basics 4
Basics 4Michael Shrove
 
Introduction to Android Development
Introduction to Android DevelopmentIntroduction to Android Development
Introduction to Android DevelopmentOwain Lewis
 
Android Mobile App Development basics PPT
Android Mobile App Development basics PPTAndroid Mobile App Development basics PPT
Android Mobile App Development basics PPTnithya697634
 
Android development
Android developmentAndroid development
Android developmentmkpartners
 
Android app devolopment
Android app devolopmentAndroid app devolopment
Android app devolopmentSitCom Solutions
 
Android Development Tutorial
Android Development TutorialAndroid Development Tutorial
Android Development TutorialGermán Bringas
 
Android OS
Android OSAndroid OS
Android OSNitin Ramchandani
 
Android Application Development
Android Application DevelopmentAndroid Application Development
Android Application DevelopmentAzfar Siddiqui
 
[Wroclaw #1] Android Security Workshop
[Wroclaw #1] Android Security Workshop[Wroclaw #1] Android Security Workshop
[Wroclaw #1] Android Security WorkshopOWASP
 
Project a day 2 android application fundamentals
Project a day 2 android application fundamentalsProject a day 2 android application fundamentals
Project a day 2 android application fundamentalsGoran Djonovic
 
mobile development with androiddfdgdfhdgfdhf.pptx
mobile development with androiddfdgdfhdgfdhf.pptxmobile development with androiddfdgdfhdgfdhf.pptx
mobile development with androiddfdgdfhdgfdhf.pptxNgLQun
 
Building a Mobile Security Program
Building a Mobile Security ProgramBuilding a Mobile Security Program
Building a Mobile Security ProgramDenim Group
 
Yow connected developing secure i os applications
Yow connected developing secure i os applicationsYow connected developing secure i os applications
Yow connected developing secure i os applicationsmgianarakis
 
Android development first steps
Android development first stepsAndroid development first steps
Android development first stepschristoforosnalmpantis
 
Android Jumpstart Jfokus
Android Jumpstart JfokusAndroid Jumpstart Jfokus
Android Jumpstart JfokusLars Vogel
 
Roles & Responsibilities in Pharmacovigilance
Roles & Responsibilities in PharmacovigilanceRoles & Responsibilities in Pharmacovigilance
Roles & Responsibilities in PharmacovigilanceSamikshaHamane
 
Raw materials used in Herbal Cosmetics.pptx
Raw materials used in Herbal Cosmetics.pptxRaw materials used in Herbal Cosmetics.pptx
Raw materials used in Herbal Cosmetics.pptxAshokrao Mane college of Pharmacy Peth-Vadgaon
 

More Related Content

Similar to Android overview

CNIT 128 Ch 4: Android
CNIT 128 Ch 4: AndroidCNIT 128 Ch 4: Android
CNIT 128 Ch 4: AndroidSam Bowne
 
Hacker Halted 2014 - Reverse Engineering the Android OS
Hacker Halted 2014 - Reverse Engineering the Android OSHacker Halted 2014 - Reverse Engineering the Android OS
Hacker Halted 2014 - Reverse Engineering the Android OSEC-Council
 
Introduction to android sessions new
Introduction to android sessions newIntroduction to android sessions new
Introduction to android sessions newJoe Jacob
 
Introduction to Android Development and Security
Introduction to Android Development and SecurityIntroduction to Android Development and Security
Introduction to Android Development and SecurityKelwin Yang
 
Introduction to Android Development
Introduction to Android DevelopmentIntroduction to Android Development
Introduction to Android DevelopmentOwain Lewis
 
Android Mobile App Development basics PPT
Android Mobile App Development basics PPTAndroid Mobile App Development basics PPT
Android Mobile App Development basics PPTnithya697634
 
Android development
Android developmentAndroid development
Android developmentmkpartners
 
Android Development Tutorial
Android Development TutorialAndroid Development Tutorial
Android Development TutorialGermán Bringas
 
Android Application Development
Android Application DevelopmentAndroid Application Development
Android Application DevelopmentAzfar Siddiqui
 
[Wroclaw #1] Android Security Workshop
[Wroclaw #1] Android Security Workshop[Wroclaw #1] Android Security Workshop
[Wroclaw #1] Android Security WorkshopOWASP
 
Project a day 2 android application fundamentals
Project a day 2 android application fundamentalsProject a day 2 android application fundamentals
Project a day 2 android application fundamentalsGoran Djonovic
 
mobile development with androiddfdgdfhdgfdhf.pptx
mobile development with androiddfdgdfhdgfdhf.pptxmobile development with androiddfdgdfhdgfdhf.pptx
mobile development with androiddfdgdfhdgfdhf.pptxNgLQun
 
Building a Mobile Security Program
Building a Mobile Security ProgramBuilding a Mobile Security Program
Building a Mobile Security ProgramDenim Group
 
Yow connected developing secure i os applications
Yow connected developing secure i os applicationsYow connected developing secure i os applications
Yow connected developing secure i os applicationsmgianarakis
 
Android Jumpstart Jfokus
Android Jumpstart JfokusAndroid Jumpstart Jfokus
Android Jumpstart JfokusLars Vogel
 

Similar to Android overview (20)

CNIT 128 Ch 4: Android
CNIT 128 Ch 4: AndroidCNIT 128 Ch 4: Android
CNIT 128 Ch 4: Android
 
128-ch4.pptx
128-ch4.pptx128-ch4.pptx
128-ch4.pptx
 
Hacker Halted 2014 - Reverse Engineering the Android OS
Hacker Halted 2014 - Reverse Engineering the Android OSHacker Halted 2014 - Reverse Engineering the Android OS
Hacker Halted 2014 - Reverse Engineering the Android OS
 
Introduction to android sessions new
Introduction to android sessions newIntroduction to android sessions new
Introduction to android sessions new
 
Introduction to Android Development and Security
Introduction to Android Development and SecurityIntroduction to Android Development and Security
Introduction to Android Development and Security
 
Basics 4
Basics 4Basics 4
Basics 4
 
Introduction to Android Development
Introduction to Android DevelopmentIntroduction to Android Development
Introduction to Android Development
 
Android Mobile App Development basics PPT
Android Mobile App Development basics PPTAndroid Mobile App Development basics PPT
Android Mobile App Development basics PPT
 
Android development
Android developmentAndroid development
Android development
 
Android app devolopment
Android app devolopmentAndroid app devolopment
Android app devolopment
 
Android Development Tutorial
Android Development TutorialAndroid Development Tutorial
Android Development Tutorial
 
Android OS
Android OSAndroid OS
Android OS
 
Android Application Development
Android Application DevelopmentAndroid Application Development
Android Application Development
 
[Wroclaw #1] Android Security Workshop
[Wroclaw #1] Android Security Workshop[Wroclaw #1] Android Security Workshop
[Wroclaw #1] Android Security Workshop
 
Project a day 2 android application fundamentals
Project a day 2 android application fundamentalsProject a day 2 android application fundamentals
Project a day 2 android application fundamentals
 
mobile development with androiddfdgdfhdgfdhf.pptx
mobile development with androiddfdgdfhdgfdhf.pptxmobile development with androiddfdgdfhdgfdhf.pptx
mobile development with androiddfdgdfhdgfdhf.pptx
 
Building a Mobile Security Program
Building a Mobile Security ProgramBuilding a Mobile Security Program
Building a Mobile Security Program
 
Yow connected developing secure i os applications
Yow connected developing secure i os applicationsYow connected developing secure i os applications
Yow connected developing secure i os applications
 
Android development first steps
Android development first stepsAndroid development first steps
Android development first steps
 
Android Jumpstart Jfokus
Android Jumpstart JfokusAndroid Jumpstart Jfokus
Android Jumpstart Jfokus
 

Recently uploaded

Roles & Responsibilities in Pharmacovigilance
Roles & Responsibilities in PharmacovigilanceRoles & Responsibilities in Pharmacovigilance
Roles & Responsibilities in PharmacovigilanceSamikshaHamane
 
AmericanHighSchoolsprezentacijaoskolama.
AmericanHighSchoolsprezentacijaoskolama.AmericanHighSchoolsprezentacijaoskolama.
AmericanHighSchoolsprezentacijaoskolama.arsicmarija21
 
AMERICAN LANGUAGE HUB_Level2_Student'sBook_Answerkey.pdf
AMERICAN LANGUAGE HUB_Level2_Student'sBook_Answerkey.pdfAMERICAN LANGUAGE HUB_Level2_Student'sBook_Answerkey.pdf
AMERICAN LANGUAGE HUB_Level2_Student'sBook_Answerkey.pdfphamnguyenenglishnb
 
Atmosphere science 7 quarter 4 .........
Atmosphere science 7 quarter 4 .........Atmosphere science 7 quarter 4 .........
Atmosphere science 7 quarter 4 .........LeaCamillePacle
 
ECONOMIC CONTEXT - PAPER 1 Q3: NEWSPAPERS.pptx
ECONOMIC CONTEXT - PAPER 1 Q3: NEWSPAPERS.pptxECONOMIC CONTEXT - PAPER 1 Q3: NEWSPAPERS.pptx
ECONOMIC CONTEXT - PAPER 1 Q3: NEWSPAPERS.pptxiammrhaywood
 
How to Configure Email Server in Odoo 17
How to Configure Email Server in Odoo 17How to Configure Email Server in Odoo 17
How to Configure Email Server in Odoo 17Celine George
 
Introduction to ArtificiaI Intelligence in Higher Education
Introduction to ArtificiaI Intelligence in Higher EducationIntroduction to ArtificiaI Intelligence in Higher Education
Introduction to ArtificiaI Intelligence in Higher Educationpboyjonauth
 
Employee wellbeing at the workplace.pptx
Employee wellbeing at the workplace.pptxEmployee wellbeing at the workplace.pptx
Employee wellbeing at the workplace.pptxNirmalaLoungPoorunde1
 
DATA STRUCTURE AND ALGORITHM for beginners
DATA STRUCTURE AND ALGORITHM for beginnersDATA STRUCTURE AND ALGORITHM for beginners
DATA STRUCTURE AND ALGORITHM for beginnersSabitha Banu
 
Romantic Opera MUSIC FOR GRADE NINE pptx
Romantic Opera MUSIC FOR GRADE NINE pptxRomantic Opera MUSIC FOR GRADE NINE pptx
Romantic Opera MUSIC FOR GRADE NINE pptxsqpmdrvczh
 
Hierarchy of management that covers different levels of management
Hierarchy of management that covers different levels of managementHierarchy of management that covers different levels of management
Hierarchy of management that covers different levels of managementmkooblal
 
Grade 9 Q4-MELC1-Active and Passive Voice.pptx
Grade 9 Q4-MELC1-Active and Passive Voice.pptxGrade 9 Q4-MELC1-Active and Passive Voice.pptx
Grade 9 Q4-MELC1-Active and Passive Voice.pptxChelloAnnAsuncion2
 
Types of Journalistic Writing Grade 8.pptx
Types of Journalistic Writing Grade 8.pptxTypes of Journalistic Writing Grade 8.pptx
Types of Journalistic Writing Grade 8.pptxEyham Joco
 
Gas measurement O2,Co2,& ph) 04/2024.pptx
Gas measurement O2,Co2,& ph) 04/2024.pptxGas measurement O2,Co2,& ph) 04/2024.pptx
Gas measurement O2,Co2,& ph) 04/2024.pptxDr.Ibrahim Hassaan
 
What is Model Inheritance in Odoo 17 ERP
What is Model Inheritance in Odoo 17 ERPWhat is Model Inheritance in Odoo 17 ERP
What is Model Inheritance in Odoo 17 ERPCeline George
 
ECONOMIC CONTEXT - LONG FORM TV DRAMA - PPT
ECONOMIC CONTEXT - LONG FORM TV DRAMA - PPTECONOMIC CONTEXT - LONG FORM TV DRAMA - PPT
ECONOMIC CONTEXT - LONG FORM TV DRAMA - PPTiammrhaywood
 

Recently uploaded (20)

Roles & Responsibilities in Pharmacovigilance
Roles & Responsibilities in PharmacovigilanceRoles & Responsibilities in Pharmacovigilance
Roles & Responsibilities in Pharmacovigilance
 
Raw materials used in Herbal Cosmetics.pptx
Raw materials used in Herbal Cosmetics.pptxRaw materials used in Herbal Cosmetics.pptx
Raw materials used in Herbal Cosmetics.pptx
 
AmericanHighSchoolsprezentacijaoskolama.
AmericanHighSchoolsprezentacijaoskolama.AmericanHighSchoolsprezentacijaoskolama.
AmericanHighSchoolsprezentacijaoskolama.
 
Rapple "Scholarly Communications and the Sustainable Development Goals"
Rapple "Scholarly Communications and the Sustainable Development Goals"Rapple "Scholarly Communications and the Sustainable Development Goals"
Rapple "Scholarly Communications and the Sustainable Development Goals"
 
AMERICAN LANGUAGE HUB_Level2_Student'sBook_Answerkey.pdf
AMERICAN LANGUAGE HUB_Level2_Student'sBook_Answerkey.pdfAMERICAN LANGUAGE HUB_Level2_Student'sBook_Answerkey.pdf
AMERICAN LANGUAGE HUB_Level2_Student'sBook_Answerkey.pdf
 
Atmosphere science 7 quarter 4 .........
Atmosphere science 7 quarter 4 .........Atmosphere science 7 quarter 4 .........
Atmosphere science 7 quarter 4 .........
 
Model Call Girl in Bikash Puri Delhi reach out to us at 🔝9953056974🔝
Model Call Girl in Bikash Puri Delhi reach out to us at 🔝9953056974🔝Model Call Girl in Bikash Puri Delhi reach out to us at 🔝9953056974🔝
Model Call Girl in Bikash Puri Delhi reach out to us at 🔝9953056974🔝
 
ECONOMIC CONTEXT - PAPER 1 Q3: NEWSPAPERS.pptx
ECONOMIC CONTEXT - PAPER 1 Q3: NEWSPAPERS.pptxECONOMIC CONTEXT - PAPER 1 Q3: NEWSPAPERS.pptx
ECONOMIC CONTEXT - PAPER 1 Q3: NEWSPAPERS.pptx
 
How to Configure Email Server in Odoo 17
How to Configure Email Server in Odoo 17How to Configure Email Server in Odoo 17
How to Configure Email Server in Odoo 17
 
Introduction to ArtificiaI Intelligence in Higher Education
Introduction to ArtificiaI Intelligence in Higher EducationIntroduction to ArtificiaI Intelligence in Higher Education
Introduction to ArtificiaI Intelligence in Higher Education
 
Employee wellbeing at the workplace.pptx
Employee wellbeing at the workplace.pptxEmployee wellbeing at the workplace.pptx
Employee wellbeing at the workplace.pptx
 
DATA STRUCTURE AND ALGORITHM for beginners
DATA STRUCTURE AND ALGORITHM for beginnersDATA STRUCTURE AND ALGORITHM for beginners
DATA STRUCTURE AND ALGORITHM for beginners
 
Romantic Opera MUSIC FOR GRADE NINE pptx
Romantic Opera MUSIC FOR GRADE NINE pptxRomantic Opera MUSIC FOR GRADE NINE pptx
Romantic Opera MUSIC FOR GRADE NINE pptx
 
Hierarchy of management that covers different levels of management
Hierarchy of management that covers different levels of managementHierarchy of management that covers different levels of management
Hierarchy of management that covers different levels of management
 
Grade 9 Q4-MELC1-Active and Passive Voice.pptx
Grade 9 Q4-MELC1-Active and Passive Voice.pptxGrade 9 Q4-MELC1-Active and Passive Voice.pptx
Grade 9 Q4-MELC1-Active and Passive Voice.pptx
 
Types of Journalistic Writing Grade 8.pptx
Types of Journalistic Writing Grade 8.pptxTypes of Journalistic Writing Grade 8.pptx
Types of Journalistic Writing Grade 8.pptx
 
Gas measurement O2,Co2,& ph) 04/2024.pptx
Gas measurement O2,Co2,& ph) 04/2024.pptxGas measurement O2,Co2,& ph) 04/2024.pptx
Gas measurement O2,Co2,& ph) 04/2024.pptx
 
9953330565 Low Rate Call Girls In Rohini Delhi NCR
9953330565 Low Rate Call Girls In Rohini Delhi NCR9953330565 Low Rate Call Girls In Rohini Delhi NCR
9953330565 Low Rate Call Girls In Rohini Delhi NCR
 
What is Model Inheritance in Odoo 17 ERP
What is Model Inheritance in Odoo 17 ERPWhat is Model Inheritance in Odoo 17 ERP
What is Model Inheritance in Odoo 17 ERP
 
ECONOMIC CONTEXT - LONG FORM TV DRAMA - PPT
ECONOMIC CONTEXT - LONG FORM TV DRAMA - PPTECONOMIC CONTEXT - LONG FORM TV DRAMA - PPT
ECONOMIC CONTEXT - LONG FORM TV DRAMA - PPT
 

Android overview

  • 1. Android By Collin Donaldson With Strong Contributions From: Anthony Kopczyk
  • 4. Activity Life Cycle - onCreate • Set the Activity's content View; Event Listeners • Find references to any needed Views • Passed-in Bundle allows a programmer to restore the Activity to its previous status
  • 5. Activity Life Cycle - onStart • Called when the Activity becomes visible • Initialize any properties requiring information from the Window and contained Views
  • 6. Activity Life Cycle - onResume • Called when the Activity is visible and in the foreground • Initialize ability for user to interact with the Activity
  • 7. Activity Life Cycle - onPause • Called when the Activity is no longer the foreground • Release system resources
  • 8. Activity Life Cycle - onStop • Called when Activity is no longer visible • Perform larger operations like writing to a database • Save Activity's state for onStart
  • 9. Activity Life Cycle - onDestroy • Called when the system is in need of resources • Last chance to free resources and avoid memory leaks
  • 11. Views • A building block for UI components • Responsible for drawing and event handling • Each View has an id • findViewById(int) Text box, check box, radio button, time picker, and image view
  • 12. XML • Eclipse IDE • Uses XML files to set up the mobile application Android Layout File
  • 13. XML - Android Manifest • Contains properties of the application • Permissions, SDK, Icon, Activities Android Manifest File
  • 14. XML - Layout • Defines the layout of the Activity • Set View id values • Could achieve the same results through java code Android Layout File
  • 15. XML – Other Files • Menu – Defines the Menu to bring up • Dimens – Defines dimensions with names and values • Strings – Defines strings with names and values • Lint – Defines exclusion or customization of lint checks • Styles – Defines the style to use in the Activity • Attrs – Defines custom attributes that may be used in XML Layout files
  • 16. Input Events • OnClickListener • OnLongClickListener • OnFocusChangeListener • OnKeyListener • OnTouchListener • OnCreateContextMenuListener
  • 18. Intents • Starts an activity or service • Service – operates in the background without a UI • Intents can be sent to other Apps • sendBroadcast() • sendOrderedBroadcast( ) • sendStickyBroadcast()
  • 19. Intents – Explicit vs. Implicit • Explicit Intents specify a component to start. • Implicit Intents give a general action to perform.
  • 20. Intents - Intent-Filter • Specified in the Manifest file • Contains the types of Intents the app wants to receive • Allows one app to send an Intent to another • If no intent filters are specified the activity may only be started with an explicit Intent • To ensure security, always use explicit intents when starting a Service • Users can not see when a Service starts
  • 21. Permission • Allows developers to use security features • Provides additional capabilities to consumers that otherwise would be impossible “A central design point of the Android security architecture is that no application, by default, has permission to perform any operations that would adversely impact other applications, the operating system, or the user”
  • 22. Permission • When an Application is installed the consumer must accept the permissions requested by an application • Permissions are defined in the Manifest file
  • 23. Permission  Facebook Messenger  Identity  Contacts/Calendar  Location  SMS  Phone  Photos/Media/Files  Camera/Microphone  Wi-Fi Connection Information  Device ID & Call Information • Angry Birds •Identity •In-app purchases •Location •Photos/Media/Files •Wi-Fi Connection Information •Device ID & Call Information
  • 24. Permission • Camera/Microphone • Allows consumers to use video chat • Photos/Media/Files • Allows consumers to send pictures they have previously taken • In order to give access, one must become more vulnerable – like opening ports on your router
  • 25. Permission • Using Intents and Permissions a developer can make his/her app call a phone number.
  • 28. Rooting/JailBreaking • Rooting is the process of gaining root (a.k.a. administrator or super user) to a smartphone. • By default, all smartphones only give user’s “guest” privileges. • This is for both safety reasons and to prevent users from doing things developers/carriers don’t like (i.e. getting rid of their bloatware).
  • 29. Pros and Cons to Root Pros • Download more apps and use existing apps to fullest potential • Flash custom ROMs • Access locked hardware/software features • Tune performance • No more bloatware • Wi-Fi/Bluetooth Tethering • Use apps designed for other phones/carriers • Install apps to an SD card Cons • If done incorrectly, can possibly brick phone • Voids any warranties you have (even if you reverse the root) • Less stable/more bugs
  • 30. General Security Vulnerabilities • Flaws in Android OS itself • Flaws in phone software/firmware • Conventional browser based virus • Vulnerabilities within downloaded apps • Unconventional attacks (injecting code into accelerometers i.e.)
  • 31. Specific Vulnerabilities • Backdoor.AndroidOS.Obad.a does not have an interface and works in background mode, making it difficult to analyze, but that was only part of the challenge, according to Unuchek. The application exploits an error in the DEX2JAR software – generally used by researchers to convert APK files into the Java Archive (JAR) format) – that disrupts the conversion of Dalvik bytecode into Java bytecode and makes it difficult to run a statistical analysis of the Trojan. • Obad.a also targets an error in Android’s processing of the AndroidManifest.xml file, which exists in every Android application to describe the application’s structure, define its launch parameters and more. Although Obad.a modifies AndroidManifest.xml so that it doesn’t comply with Google standards, the vulnerability enables it to still be processed correctly, complicating any attempt to run dynamic analysis on the application.
  • 32. Next Time • We will use a Metasploit (with a specific module) to attack an android device. • The “android device” will be a virtual android machine running on an emulator • We may also write a virus and Python and deploy it to a device.