Android安全开发技术

课程简介：
对安卓开发者而言，安全是一个重要的话题。对开发者而言，养成良好的开发习惯，掌握安卓的安全模型，从而为用户开发更安全的应用程序。

课程目标：
Upon completing this course, students will be able to:

• Understand Android software architecture.
• Understand Android’s security model.
• Build Android applications with security best practices in mind.
• Build more secure and more robust application that appeals to clients.

课程大纲：
Lesson 1 Permissions

• Introduction
• Android Platform Architecture
• Android Security Architecture
• Permissions
• Levels of Protection
• Application Level Permissions
• Component level Permissions
• Extending Android Permissions
• Lab 1: Securing Applications Using Permission

Lesson 2 Managing the Policy File

• Introduction
• The Manifest File
• Modifying Application Policy
• Lab 2: Defining the Application’s Policy File

Lesson 3 User Data Privacy and Protection

• Introduction
• Data security principles
• Vulnerabilities and Attacks against Stored Data
• Protection Principles
• Digital rights management
• Lab 3: Data Confidentiality and Protection

Lesson 4 Securing Storage

• Introduction
• Data storage decisions
• Storage Mechanisms
• Shared preferences
• File
• Cache
• Lab 4: Data Storage Applications