If you are making modifications to the platform, you'll want to go to one of the appropriate groups like android-porting or android-platform.
On Tue, Nov 16, 2010 at 7:08 AM, daniela <[email protected]> wrote: > Dear Daniel, > > Thanks for your response! I have yet to figure out what exactly to > add, which mainly depends on what is reasonable for a 2-month project. > > As for the second question, I didn't think an app would be useful, so > I will try to change the platform code in some way. > > Do you think you could point me to some more specific locations in the > code? I had already looked at the packages you suggested, > but being pressed for time, I would really appreciate some more > specific pointers. > > Also, if you deem my approach wrong, I would be very grateful if you > could give me some other ideas for how to proceed. > > Thanks again! > Daniela > > On Nov 16, 12:05 pm, Daniel Drozdzewski <[email protected]> > wrote: > > On Tue, Nov 16, 2010 at 11:44 AM, daniela <[email protected]> > wrote: > > > Dear all, > > > > > I would like to add some additional static checking of apps probably > > > within the Dalvik verifier. Alternatively, I may add checks to other > > > security related > > > parts of the Android platform. > > > I have been struggling to find detailed documentation for the > > > architecture and implementation of the Dalvik VM (except for the code > > > itself). > > > > > Could you please point me to any useful information on the subject or > > > possibly to specific places in the code where I could do some static > > > analysis or > > > add some other additional checking of the security properties of apps? > > > > > Thank you very much indeed! > > > Daniela > > > > Daniela, > > > > What aspects would you like to verify is probably the most important > question. > > > > 2nd most important one is: > > Are you trying to do it for your application or for other applications > too? > > > > About the latter, I am not sure, whether you will be able to achieve > > this from an application. What would make your application special > > that the APIs or the system would grant you access to other apps? What > > I am saying is that leaving such functionality open could pose > > security concerns. > > > > To achieve this in your application, have a look at Guice: > http://code.google.com/p/google-guice/wiki/AOP > > > > ...and its flavour for Android:http://code.google.com/p/roboguice/ > > > > Also have a look at classes in following packages: > > > > dalvik.* > > security.* > > > > Daniel > > -- > You received this message because you are subscribed to the Google > Groups "Android Developers" group. > To post to this group, send email to [email protected] > To unsubscribe from this group, send email to > [email protected]<android-developers%[email protected]> > For more options, visit this group at > http://groups.google.com/group/android-developers?hl=en > -- Dianne Hackborn Android framework engineer [email protected] Note: please don't send private questions to me, as I don't have time to provide private support, and so won't reply to such e-mails. All such questions should be posted on public forums, where I and others can see and answer them. -- You received this message because you are subscribed to the Google Groups "Android Developers" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [email protected] For more options, visit this group at http://groups.google.com/group/android-developers?hl=en
