Android security

1746

7

2016-01-10 00:43

The Android security team is responsible for managing security vulnerabilities discovered in the Android platform and many of the core Android apps bundled with Android devices.


The Android security team finds security vulnerabilities through internal research and also responds to bugs reported by third parties. Sources of external bugs include issues reported through the Android Open Source Project (AOSP) Security bug report template, published and pre-published academic research, upstream open source project maintainers, notifications from our device manufacturer partners, and publicly disclosed issues posted on blogs or social media.


Any developer, Android user, or security researcher can notify the Android security team of potential security issues through the AOSP bug tracker Security bug report template.


In addition to providing patches for security bugs, the Android security team also review security bugs to determine if there are other ways to protect users. For example, Google Play scans all applications and will remove any application that attempts to exploit a security bug. For applications installed from outside of Google Play, devices with Google Play Services may also use the Verify Apps feature to warn users about applications that may be potentially harmful.

source