Know the Risk: Digital Transformation's Impact on Your Business-Critical Applications REGISTER >
The National Security Agency recently introduced SE Android, a new version of Android with enhanced security features.
"One of the main things that SE Android is trying to improve is Android's application security model, which is based on the default Linux discretionary access control," writes Computerworld's Lucian Constantin. "Under DAC, an application run by a particular user has access to all of the files and resources accessible to that user."
"However, under the MAC model implemented by SE Linux and now SE Android, the resources available to an application can be restricted to whatever is defined in a policy, regardless of the user's permissions on the system," Constantin writes. "Because of this, SE Android can be used to confine privileged services and limit the damage that attackers can do if they exploit vulnerabilities."
Go to "NSA releases security-enhanced version of Android" to read the details.
For regular security news updates, follow eSecurityPlanet on Twitter: @eSecurityP.