Do you sometimes feel that your phone just isn’t as secure as it should be? Then allow me to introduce Security Enhanced Android (SEA), brought to you by the wonderful folks over at the National Security Agency (NSA). Taken from the AOSP and then beefed up to withstand any type of security breach, SEA is invulnerable to most types of malicious 3rd party apps that most people would fear.
Security Enhanced Android offers:
- Per-file security labeling support for yaffs2,
- Filesystem images (yaffs2 and ext4) labeled at build time,
- Kernel permission checks controlling Binder IPC,
- Labeling of service sockets and socket files created by init,
- Labeling of device nodes created by ueventd,
- Flexible, configurable labeling of apps and app data directories,
- Userspace permission checks controlling use of the Zygote socket commands,
- Minimal port of SELinux userspace,
- SELinux support for the Android toolbox,
- Small TE policy written from scratch for Android,
- Confined domains for system services and apps,
- Use of MLS categories to isolate apps.
Feel like learning more about Security Enhanced Android and maybe even loading it onto your device? Then check out the source right here.