Nga, Yes. Your understanding is correct.
It is Activity Manager Service will retrieve the ServiceRecord of the service to be bound to. This ServiceRecord contains service information including the required permission to access it. Then, the AMS uses the PackageManager to check whether the calling application (by uid) has the permission. Thanks, Machigar. On Oct 22, 12:05 pm, Grizzly <[email protected]> wrote: > unsubscribe > > > > On Thu, Oct 22, 2009 at 11:38 AM, William Enck <[email protected]> wrote: > > > Nga, > > > The package manager is used to lookup permissions; however the location > > within Android of security enforcement depends on the particular event. The > > activity manager service is a good staring place (if you wanted to > > investigate more) and is where most of the security enforcement occurs. > > > -Will > > > On Oct 22, 2009, at 11:02 AM, nguyenvuthiennga wrote: > > >> Hi all, > > >> I am trying to understand security enforcement in Android. > > >> I don't really understand how it works. When one component tries to > >> access another one, which part in Android will check the permission? > >> How is permission checking procedure? > > >> As I read from "Understanding Android security" (PennState Unv), there > >> are 2 enforcement mechanisms: system level and ICC level. However, > >> that document doesn't really talk about system level (or I miss it). > >> Can anyone explain me more about both mechanisms? > > >> Thanks in advance, > > >> Nga > > > -- > > William Enck > > PhD Candidate > > Department of Computer Science and Engineering > > The Pennsylvania State University > > [email protected] > > -- > -- Grizzly > [email protected]
