Author Topic: Android Application Firewall - ComodoDroid  (Read 8176 times)

Offline droid

  • Newbie
  • *
  • Posts: 2
Android Application Firewall - ComodoDroid
« on: October 03, 2010, 02:33:44 AM »
The release of TaintDroid by http://www.appanalysis.org/ on 9/29/2010 has highlighted the issue of application control in the Android OS.

At this time there is no granular control over what permissions application have.

Application installed by default (OEM) have all the permissions they were programmed with.

Applications installed from the AndroidMarket (or elsewhere) display a notification screen that lists what permissions the application is seeking.

These permissions are 'all or nothing'. Many users treat this notification  screen as the equivalent of a meaningless hassle, and similar to the "click here if you have read and agree to the EULA".

Clicking install/agree on this notification allows the application all permissions requested, leaving the user without any option; short of un-installing the application.

This is where ComodoDroid comes in.

ComodoDroid for Android 2.2 is an application firewall that stands between the Android OS and the installed applications.

Applications can request the following permissions: http://developer.android.com/reference/android/Manifest.permission.html

ComodoDroid gives users granular control over application permissions.


Example 1; ComodoDroid: 'Random Wallpaper App' is requesting to 'READ_SMS'

|  Allow All for Application [Random Wallpaper App] // Deny this Application [Random Wallpaper App]
|       or
|  Allow [Read_SMS] access // Deny [READ_SMS] access
|
|  Remember my response // Ask me again


Example 2; ComodoDroid: [Random Wallpaper App] is requesting "getDeviceId()" {Returns the unique device ID, for example, the IMEI for GSM and the MEID or ESN for CDMA phones.} as part of the READ_PHONE_STATE permission
- http://developer.android.com/reference/android/telephony/TelephonyManager.html#getDeviceId%28%29
- http://developer.android.com/reference/android/Manifest.permission.html#READ_PHONE_STATE)

| Allow.....

Example 3; (( from http://appanalysis.org/demo/index.html 00:38 ))
ComodoDroid: Application com.wallpapers is attempting to send data to a remote computer (69.164.x.x)
Data: Phone Number, IMEI, ICCID (SIM Card Id);
Details; uniquely_code=xxxxxxxxxxxxxx&device_info&...

| Allow.....


What do you think?

Offline droid

  • Newbie
  • *
  • Posts: 2
Re: Android Application Firewall - ComodoDroid
« Reply #1 on: October 03, 2010, 02:43:21 AM »
Explanation of the primary permission types:
http://www.downloadsquad.com/2010/06/28/understanding-the-android-market-security-system/

//

Example of application getting permissions that the user didn't allow http://phandroid.com/2010/09/08/permissions-bug-allowing-unauthorized-access-to-sd-card-storage-and-phone-state/




//

And Smobile scanned 48,694 Android applications on AndroidMarket; of those 9 requested the access to brick your phone  :-TD  http://threatcenter.smobilesystems.com/?p=1887
« Last Edit: October 03, 2010, 03:11:13 AM by droid »

 

Seo4Smf 2.0 © SmfMod.Com | Smf Destek