Home > Developer > Mobile Develop

[Android Development] Permissions

Source: Internet
Author: User
Tags least privilege
Developer on Alibaba Coud: Build your first app with APIs, SDKs, and tutorials on the Alibaba Cloud. Read more >

Android applications are written in the Java programming language. The Android SDK tool compiles your code-along with any data and resource files-into an APK:Android Package , which is an .apk archive file with a suffix. An APK file contains all the content of an Android app, which is a file that is used by Android-based devices to install the app.

After installing to the device, each Android app runs in its own security sandbox:

    • The Android operating system is a multi-user Linux system, where each application is a different user;
    • By default, each app is assigned a unique Linux user ID (the ID is only used by the system and is not known by the app). The system sets permissions for all files in the app so that only the user ID assigned to the app can access the files;
    • Each process has its own virtual machine (VM), so the application code is run in an environment that is isolated from other applications;
    • By default, each app runs within its own Linux process. Android starts the process when it needs to execute any application components, and then shuts down the process when it is no longer needed or when the system must recover memory for other apps.

This is the way Android systems can implement the principle of least privilege . That is, by default, each app has access only to the components that it needs to perform its work, not to other components. This creates a very secure environment in which apps cannot access the parts of the system that they do not have permissions on.

However, apps can still share data with other apps and access system services in some ways:

    • You can schedule two apps to share the same Linux user ID, in which case they can access each other's files. To conserve system resources, you can schedule an app with the same user ID to run in the same Linux process and share the same VM (the app must also be signed with the same certificate).
    • Apps can request access to device data, such as users ' contacts, text messages, loadable storage devices [SD cards], cameras, Bluetooth, and so on. Users must explicitly grant these permissions. For more information, see Using System permissions

[Android Development] Permissions

This article is an English version of an article which is originally in the Chinese language on aliyun.com and is provided for information purposes only. This website makes no representation or warranty of any kind, either expressed or implied, as to the accuracy, completeness ownership or reliability of the article or any translations thereof. If you have any concerns or complaints relating to the article, please send an email, providing a detailed description of the concern or complaint, to info-contact@alibabacloud.com. A staff member will contact you within 5 working days. Once verified, infringing content will be removed immediately.

Related Keywords:
android app permissions control android permissions explained android app permissions manager android app permissions control revoke app permissions android android manifest permissions android app permissions explained

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

What's Trending
Top 10 Tags
datastax versions naming convention zookeeper client class definition md5 microsoft sql server 2005 data structures exception handling error handling
Top 10 Keywords
microsoft download center down wordpress address url site address url wordpress address url windows installer 4 0 download 302 not found web address url definition site address url wordpress db2 integer mac os installation step by step pdf abbreviation for return

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

Get Started for Free

  • Sales Support

    1 on 1 presale consultation

    Chat Contact Sales

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

    Open a Ticket

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.

    Learn More