Csw2016 chaykin having_funwithsecuremessengers_and_androidwear
38
Having fun with secure messengers and Android Wear (and Android Auto) Artem Chaykin Positive Technologies CanSecWest’16
-
Upload
cansecwest -
Category
Internet
-
view
1.254 -
download
0
Transcript of Csw2016 chaykin having_funwithsecuremessengers_and_androidwear
Having fun with secure messengers and Android Wear (and Android Auto)
Artem Chaykin
Positive Technologies
CanSecWest’16
Who I am? • Russian hacker / Putin’s agent • Mobile application security team lead • SCADA Strangelove Team • RDot.Org team member
Android IPC basics • Private memory for each process • Data is passed through kernel module – Binder • Intent-based
Intents • Intent is an object • App1 can send intents to exported components of App2
Intent
Packagename
Componentname
Ac0on Data
Fixes Still no thanks
• Signal – emailed Moxie – fixed same day – got “thanks” • Telegram – emailed security@ - partial fix after ~ 45 days -