Blackbox Android: Breaking “Enterprise Class” Applications and Secure Containers

No ratings

Presented at HITBMalaysia 2011 by

Marc Blanchou

Mathew solnik

The Android platform is growing in popularity and is quickly being adopted in the enterprise environment. Corporations and governments now have to secure potentially sensitive information on mobile phones. In order to facilitate this, security solutions have been developed, such as “secure containers” which claim to help enterprises secure mobile devices. There is an increasing need to be able to assess the security claims of such “enterprise class” Android software vendors. Yet there is very little publicly released information on how to do this and how the claims hold up to real world threats. This talk will cover our research into the potential threats to Android devices, how to understand what should be protected, when it should be protected, and how secure containers fit into the mix. With the help of this information and these techniques, the audience will be able to follow the steps we took to assess enterprise class secure containers and determine if secure containers are right for their needs.