Security Enhancements (SE) for Android
Security Enhancements (SE) for Android™ was a NSA-led project
that created and released an open source reference implementation of
how to enable and apply SELinux to Android, made the case for adopting
SELinux into mainline Android, and worked with the Android Open Source
Project (AOSP) to integrate the changes into mainline Android. As a
result, SELinux is now a core part of Android. See
Security-Enhanced Linux in Android for more information about SELinux in mainline Android.
SE for Android was originally called Security Enhanced Android (SE
Android) but was renamed to comply with the Android brand guidelines.
Hence, you will see the older name in many of the presentations and
SE for Android used to maintain its own source code repositories on
bitbucket.org but these have been removed since the code has all been
merged to AOSP.
Presentations and papers describing SE for Android included:
- The Case for SE Android, Linux Security Summit 2011, Sep 2011. Slides
- The Case for Security Enhanced (SE) Android, Android Builders Summit 2012, Feb 2012. Slides
- Security Enhanced (SE) Android, LinuxCon North America 2012, Aug 2012. Slides
- Middleware MAC for Android, Linux Security Summit 2012, Aug 2012. Slides
- Security Enhanced (SE) Android: Bringing Flexible MAC to Android, 20th Annual Network and Distributed System Security Symposium (NDSS '13), Feb 2013. Paper and Slides
- Laying a Secure Foundation for Mobile Devices, 20th Annual Network and Distributed System Security Symposium (NDSS '13), Feb 2013. Slides
- Security Enhancements (SE) for Android, Android Builders Summit 2014, Apr 2014. Slides
- Protecting the Android TCB with SELinux, Linux Security Summit 2014, Aug 2014. Slides
- SELinux in Android Lollipop and Marshmallow, Linux Security Summit 2015, Aug 2015. Slides
Further talks describing the impact of SELinux on Android security and further SELinux development in Android include:
This page is a copy of the content from http://selinuxproject.org/page/SEforAndroid and may be stale.
- ioctl command whitelisting in SELinux, Linux Security Summit 2015, Aug 2015. Slides
- Android: protecting the kernel, Linux Security Summit, Aug 2016. Slides
- Honey I Shrunk the Attack Surface: Adventures in Android Security Hardening, Black Hat USA 2017, July 2017.Slides
- SELinux in Android Oreo or: How I Learned to Stop Worrying and Love Attributes, Linux Security Summit 2017, Sep 2017.Slides
(Android is a trademark of Google LLC)