Can anyone please clarify on the Protection Levels for a Permission? *Below is my understanding:*
"Protection levels - ‘signature’ and ‘systemOrsignature’ are same except for the below reason. In either case a system app is always having the permission. Suppose X is defining permission with Protection level systemOrsignature. And Y is a system app that is part of the system image, then Y has the permission. And if Z is another vendor app that has a same certificate/signature (if the developer (OEM) of X has shared it with vendor), then Z too has the permission, even if Z is not part of system image. So, this helps non-system apps that share OEM signature. " Also, Is there a way to prevent the system apps that dont have a permission in its Manifest from the access. To be clear: "Suppose X is defining permission with Protection level systemOrsignature. And Y is a system app that is part of the system image, then Y has the permission. " In this case is it possible to prevent Y from having the permission? Please clarify. *Some References:* http://developer.android.com/guide/topics/manifest/permission-element.html#plevel https://groups.google.com/forum/?fromgroups=#!topic/android-security-discuss/KLnEjTtiFgA -- You received this message because you are subscribed to the Google Groups "Android Security Discussions" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. Visit this group at http://groups.google.com/group/android-security-discuss?hl=en. For more options, visit https://groups.google.com/groups/opt_out.
