Insider Attack Resistance in the Android Ecosystem

Explore insider attack resistance in the Android ecosystem through this 22-minute conference talk from USENIX Enigma 2019. Delve into the complex threat model for mobile devices, including physical attacks, malicious code, and potential vulnerabilities introduced by various organizations involved in the manufacturing and update chain. Learn about the concept of insider attacks and their potential impact on user security. Discover the defenses implemented in Android to counter such threats, including measures at the secure hardware level and system software level. Understand how Android Pie 9.0 introduced insider attack resistance for updates to tamper-resistant hardware, limiting the capability of insiders to harm users. Gain insights into ongoing efforts to mitigate insider attacks and the call for the security community to develop novel methods for enhancing mobile device security.