commit | 9c14d84cde812b6482b101c979f536ef75bf1605 | |
---|---|---|
author | Gina Dimino <gdimino@google.com> | Wed Feb 06 15:32:40 2019 -0800 |
committer | Gina Dimino <gdimino@google.com> | Wed Feb 06 15:32:40 2019 -0800 |
Docs: Typo fixes. Test: ./cdd_gen.sh --version 9 --branch pie-dev Change-Id: Ic4a076c8c09bcae2317edc4251502caedef3a3d1
commit | 8495c0766f9b83a5084dc1b2ad9955aee4743e97 | |
---|---|---|
author | Greg Kaiser <gkaiser@google.com> | Wed Dec 19 14:54:25 2018 -0800 |
committer | Vikas Marwaha <vikasmarwaha@google.com> | Mon Jan 07 17:22:31 2019 +0000 |
CDD: Expand allowed encryption implementation Previously, if a device had AES performance <= 50 MiB/sec, it had two options: Encryption with AES, or no encryption. We add a third option for this class of device: Encryption with Adiantum. Adiantum provides better performance than AES on this class of device, while still providing strong protection. Note there is no change to the requirement that devices with AES performance > 50 MiB/sec MUST encrypt with AES. Test: None Change-Id: Ib612f2c8ebdb7631e3963f50020436a6af8d6ec5
commit | c8fb778e37f98e5ded8f0673401d2dac7300947e | |
---|---|---|
author | Gina Dimino <gdimino@google.com> | Tue Dec 11 16:35:57 2018 -0800 |
committer | Gina Dimino <gdimino@google.com> | Tue Dec 11 16:35:57 2018 -0800 |
Docs: Consistent use of terms preinstalled and third-party. Test: make_cdd.py --version <version-number> --branch <branch> Change-Id: I98b896d819fc5652aba1d19bf82d15670b6287a0
commit | ff17005d92485606eb6bd001bc2e7ea3162e4a83 | |
---|---|---|
author | Gina Dimino <gdimino@google.com> | Fri Aug 03 18:05:48 2018 -0700 |
committer | Gina Dimino <gdimino@google.com> | Thu Aug 09 13:52:06 2018 -0700 |
Docs: Errata for Android 9 CDD. - Fixed Section 9.10 by removing C-2-1 due to the introduction of C-0-2 - Fixed typos in other sections Bug: 112010610 Test: ./cdd_gen.sh --version 9 --branch pie-dev Change-Id: Ie4003beb20425a7fc83cf68ea23772aca389b85b
commit | 2350d388cd994a520705dc97bda98aef3a353c28 | |
---|---|---|
author | Greg Kaiser <gkaiser@google.com> | Tue Jul 31 05:22:01 2018 -0700 |
committer | Vikas Marwaha <vikasmarwaha@google.com> | Thu Aug 02 23:56:26 2018 +0000 |
CDD: Move the req of supporting encryption under perf carve-out - Ensure the consistent security across devices - Replace the carve-out of secure lock screen with the perf carve-out for supporting encryption Test: None Bug: 71909258 Change-Id: Ied56bb0bdd99e3f27e68c13829073c5982019c74
commit | 5a7fb2b3846fc406238cbf214d6579e2b74545fe | |
---|---|---|
author | TreeHugger Robot <treehugger-gerrit@google.com> | Thu Aug 02 23:46:20 2018 +0000 |
committer | Android (Google) Code Review <android-gerrit@google.com> | Thu Aug 02 23:46:20 2018 +0000 |
Merge "CDD: Require logging of some basic events available to app developers through statsd." into pi-dev
commit | 0faef185bc696db81cf32cedbc03263d6b8ef94b | |
---|---|---|
author | sachiyo <sachiyo@google.com> | Tue Jul 17 11:03:16 2018 -0700 |
committer | Vikas Marwaha <vikasmarwaha@google.com> | Thu Aug 02 22:54:04 2018 +0000 |
CDD: Clarifying kernel page table isolation - Modifying the requirement language for C-0-12(kernel page table isolation) requirement to add clarity. Bug: 79088532 Change-Id: If3b3da40b78203c177cb4b833ea49837336a72b7
commit | b7aeb54de3dca4b40aa8bd648ea0e071f62bcc84 | |
---|---|---|
author | TreeHugger Robot <treehugger-gerrit@google.com> | Thu Aug 02 21:47:32 2018 +0000 |
committer | Android (Google) Code Review <android-gerrit@google.com> | Thu Aug 02 21:47:32 2018 +0000 |
Merge "CDD: Requirements for services that have access to "android.permission.RECOVER_KEYSTORE"" into pi-dev
commit | 97e3c4d5819ea189ca0dd8b7d796ea34f05fd178 | |
---|---|---|
author | Joe Onorato <joeo@google.com> | Fri Jul 13 05:44:42 2018 +0100 |
committer | Unsuk Jung <unsuk@google.com> | Thu Aug 02 20:59:41 2018 +0000 |
CDD: Require logging of some basic events available to app developers through statsd. Enlist required fields to be more specific about what is needed for developer tools and what is needed for privacy. Bug: 76161779 Bug: 74125988 Test: None Change-Id: I4ff9a73f72c3270caaac0f116297d666a58561fb
commit | c27e17a758cfd676b8106957f3b7050171e0f687 | |
---|---|---|
author | Bo Zhu <bozhu@google.com> | Thu Jun 21 14:06:26 2018 -0700 |
committer | Sachiyo Sugimoto <sachiyo@google.com> | Thu Aug 02 19:45:53 2018 +0000 |
CDD: Requirements for services that have access to "android.permission.RECOVER_KEYSTORE" - Prevent brute-force attacks on the lockscreen knowledge factor. Bug: 73599998 Test: None Change-Id: I8f7fa701b11f015e26429c4683a36d37aa2faa47
commit | e356b65b26b15b8f80529ab06f5f72fe2b965204 | |
---|---|---|
author | TreeHugger Robot <treehugger-gerrit@google.com> | Wed Aug 01 22:23:34 2018 +0000 |
committer | Android (Google) Code Review <android-gerrit@google.com> | Wed Aug 01 22:23:34 2018 +0000 |
Merge "CDD: Add section about Android Protected Confirmation API" into pi-dev
commit | 873b9b75f8220fd5c34c410089a63a79f38b9530 | |
---|---|---|
author | TreeHugger Robot <treehugger-gerrit@google.com> | Wed Aug 01 21:40:44 2018 +0000 |
committer | Android (Google) Code Review <android-gerrit@google.com> | Wed Aug 01 21:40:44 2018 +0000 |
Merge "CDD: Update CDD language for biometrics and lockscreen." into pi-dev
commit | 84409cfa9fc59ef1e587f21040768a7f083f63db | |
---|---|---|
author | David Zeuthen <zeuthen@google.com> | Fri Jun 15 12:48:06 2018 -0400 |
committer | Vikas Marwaha <vikasmarwaha@google.com> | Wed Aug 01 20:49:01 2018 +0000 |
CDD: Add section about Android Protected Confirmation API - Device implementations with secure hardware may implement the Android Protected Confirmation API to request the user to approve a textual message. Bug: 73001803 Test: n/a Change-Id: I96c5929b0b4ab99b31a9fe7ca0ac82710f94cdca
commit | 9ce17e8543f1393549b96cca74ec3a3feb753cc3 | |
---|---|---|
author | Vishwath Mohan <vishwath@google.com> | Wed Jun 13 13:33:56 2018 -0700 |
committer | Sachiyo Sugimoto <sachiyo@google.com> | Wed Aug 01 18:55:15 2018 +0000 |
CDD: Update CDD language for biometrics and lockscreen. This CL makes CDD changes that are aimed at providing more explicit guidance on creating secure biometric based unlocks, and on consolidating the CDD language for secure lockscreens to make the authentication model consistent with our security bar. More specifically, it changes the following things: (1) A new section similar to "7.3.10 Fingerprint Sensors" that's more generic and applicable to all biometric sensors. Should have mostly the same constraints but slightly altered where necessary. (2) Language that deals with match-on-chip solutions for biometrics. (3) A new requirement in 9.11 that mandates keeping a minimum Sleep timeout of at most 15 seconds. (4) New requirements in "9.11.1 Secure Lock Screens" that: (a) Constrain what a primary authentication can be. (b) Adds information related to alternate biometric unlocks and adhering to the SAR/IAR bar that was introduced in the 8.1 CDD (c) Adds requirements around 'passive' biometric unlocks like Face when used to unlock keystore keys. (d) Clarifies some language around falling back to requiring primary auth every 72 hours for all non-primary modes of authentication (5) Removes the API requirement to return false for both the KeyguardManager.isKeyguardSecure() and the KeyguardManager.isDeviceSecure() methods. Bug: 73723272 Bug: 77656214 Bug: 111053551 Test: -- Change-Id: Iede9eba5ac79de56802cd830c3dc4e521f40e098
commit | 0a6568fd22d9779a5bc9df8020f09196c305d424 | |
---|---|---|
author | David Zeuthen <zeuthen@google.com> | Mon Jul 09 17:48:48 2018 -0400 |
committer | Xin Li <delphij@google.com> | Wed Aug 01 18:33:04 2018 +0000 |
CDD: 9.10. Device Integrity: Change verified boot items from SR to MUST. Change STRONGLY RECOMMENDED to MUST for verified boot items and slight cleanup of language used: - MUST use tamper-evident storage: for storing whether the bootloader is unlocked. Tamper-evident storage means that the boot loader can detect if the storage has been tampered with from inside Android. - MUST prompt the user, while using the device, and require physical confirmation before allowing a transition from boot loader locked mode to boot loader unlocked mode. - MUST implement rollback protection for the partitions used by Android (e.g. boot, system partitions) and use tamper-evident storage for storing the metadata used for determining the minimum allowable OS version. Test: n/a Bug: 72919368 Change-Id: Ifcb0c994cb86f92a422dcde6fa6da1ca064d4ca0
commit | afad147865961016ee1aeed031ca98c4e42043a1 | |
---|---|---|
author | TreeHugger Robot <treehugger-gerrit@google.com> | Mon Jul 30 17:37:37 2018 +0000 |
committer | Android (Google) Code Review <android-gerrit@google.com> | Mon Jul 30 17:37:37 2018 +0000 |
Merge "CDD: StrongBox requirements" into pi-dev
commit | 144576e608877fbe60899e11184993c4e3eef04d | |
---|---|---|
author | TreeHugger Robot <treehugger-gerrit@google.com> | Fri Jul 27 23:41:52 2018 +0000 |
committer | Android (Google) Code Review <android-gerrit@google.com> | Fri Jul 27 23:41:52 2018 +0000 |
Merge "CDD: Update CDD changes for CFI and IOSAN" into pi-dev
commit | d5349a9f1c474065fc525be4594144a5b9bdb35b | |
---|---|---|
author | TreeHugger Robot <treehugger-gerrit@google.com> | Fri Jul 27 23:33:49 2018 +0000 |
committer | Android (Google) Code Review <android-gerrit@google.com> | Fri Jul 27 23:33:49 2018 +0000 |
Merge "CDD: Recommend metadata encryption" into pi-dev
commit | a16ad8b7739a87fd93d297f827bf1e70ae4810d7 | |
---|---|---|
author | TreeHugger Robot <treehugger-gerrit@google.com> | Fri Jul 27 22:58:04 2018 +0000 |
committer | Android (Google) Code Review <android-gerrit@google.com> | Fri Jul 27 22:58:04 2018 +0000 |
Merge "CDD: Require verified boot on all devices, including low ram devices" into pi-dev
commit | f37f345577056c4bc39395b3e93eaec472dd21f2 | |
---|---|---|
author | Vishwath Mohan <vishwath@google.com> | Tue Jun 19 10:06:56 2018 -0700 |
committer | Vikas Marwaha <vikasmarwaha@google.com> | Fri Jul 27 22:29:13 2018 +0000 |
CDD: Update CDD changes for CFI and IOSAN This CL renames section 9.7 to 'Security Features' (instead of kernel security features), and adds a new sub-section for userspace specific security feature advice. There's only a single recommendation in for P, but we will be using this section to add more details and recommendations/constraints for Q. Bug: 73724250 Test: -- Change-Id: If45c5fd9b7668dcafc9ce8dbd2a59b9c4418ca42
commit | 372f3f5f628b96f89db834155ee0133795c210b9 | |
---|---|---|
author | Shawn Willden <swillden@google.com> | Mon Apr 09 06:58:45 2018 -0600 |
committer | Sachiyo Sugimoto <sachiyo@google.com> | Fri Jul 27 16:33:20 2018 +0000 |
CDD: StrongBox requirements - Tighten the security by supporting StrongBox. - Clarifying the requirements if StrongBox is supported. Bug: 73002261 Test: N/A Change-Id: I9834ced2e697bee013cb0725f31745826da1f0c5
commit | d449d90672b8546b3810f887679bfa55a8f788a6 | |
---|---|---|
author | Greg Kaiser <gkaiser@google.com> | Fri Jul 13 16:31:04 2018 -0700 |
committer | Sachiyo Sugimoto <sachiyo@google.com> | Thu Jul 26 18:52:46 2018 +0000 |
CDD: Require verified boot on all devices, including low ram devices We remove the low RAM exception for verified boot. Test: None Bug: 73374550 Change-Id: I340e8753c8648bbe2a68426123851359d4cba1cb
commit | 4c8ef676e85543a9811feca13e5ebfe482e3aa25 | |
---|---|---|
author | Vikas Marwaha <vikasmarwaha@google.com> | Mon Jul 23 17:20:53 2018 +0000 |
committer | Android (Google) Code Review <android-gerrit@google.com> | Mon Jul 23 17:20:53 2018 +0000 |
Merge "CDD: Handheld MUST include an application that handles intents related to Storage Access Framework (SAF)" into pi-dev
commit | a7d566294868231328ab0e950a56e8b731a7b2ec | |
---|---|---|
author | TreeHugger Robot <treehugger-gerrit@google.com> | Sun Jul 22 05:24:24 2018 +0000 |
committer | Android (Google) Code Review <android-gerrit@google.com> | Sun Jul 22 05:24:24 2018 +0000 |
Merge "Docs: clarify that that CONFIG_ARM_LPAE is not allowed for 32-bit ARM" into pi-dev
commit | e6c5b051e1a56cb82507a5904682e61c627248a6 | |
---|---|---|
author | Jeff Vander Stoep <jeffv@google.com> | Tue Jun 12 14:31:52 2018 -0700 |
committer | Unsuk Jung <unsuk@google.com> | Sat Jul 21 08:33:42 2018 +0000 |
Docs: clarify that that CONFIG_ARM_LPAE is not allowed for 32-bit ARM - It's incompatible with PAN emulation for arm32 kernels. - This is already implicitly tested when checking for CONFIG_CPU_SW_DOMAIN_PAN. Bug: 109828784, 74078653, 79088532, 73728376 Test: n/a Change-Id: Idb6a96d6f8c13a959b4bdc2c5580294beeff2d7c
commit | f0d920bd8bb69097ceb16bc17baf88b5d9ab6091 | |
---|---|---|
author | Paul Crowley <paulcrowley@google.com> | Fri Jun 15 15:36:20 2018 -0700 |
committer | Paul Crowley <paulcrowley@google.com> | Tue Jul 17 14:56:38 2018 -0700 |
CDD: Allow escrow keys to unlock CE storage. - Much of the purpose of escrow keys is to allow storage to be unlocked when a user forgets their LSKF, so we must allow this in CDD. Bug: 111561428 Test: Documentation change. Change-Id: I0de44228e35728713405a8d84ec3b8e6f8a9ecbf
commit | 5ef8370b1111a7c4bb4321d2f21f9e77d5be856a | |
---|---|---|
author | Vikas Marwaha <vikasmarwaha@google.com> | Tue Jul 10 23:25:09 2018 +0000 |
committer | Android (Google) Code Review <android-gerrit@google.com> | Tue Jul 10 23:25:09 2018 +0000 |
Merge "CCD: Add recommendations for Full Stack Integrity" into pi-dev
commit | 5d8429ffa6db807858c99a9d9f40981f21e65b2c | |
---|---|---|
author | Vikas Marwaha <vikasmarwaha@google.com> | Tue Jul 10 18:20:19 2018 +0000 |
committer | Android (Google) Code Review <android-gerrit@google.com> | Tue Jul 10 18:20:19 2018 +0000 |
Merge "CDD: Require to include only the data with 'DEST_AUTO' in the incident report" into pi-dev
commit | 3b187190e9f785855490162a7860671595248185 | |
---|---|---|
author | Paul Crowley <paulcrowley@google.com> | Fri Jun 15 14:33:57 2018 -0700 |
committer | Sachiyo Sugimoto <sachiyo@google.com> | Mon Jul 09 21:15:59 2018 +0000 |
CDD: Recommend metadata encryption - Tighten the security. Bug: 73662717 Test: Compiled and inspected HTML Change-Id: Ib2be403ef2db8525c9ad579a289eca79132696e9
commit | c781f1acfabceab43f8475051f2ea3866c1eee7a | |
---|---|---|
author | Vikas Marwaha <vikasmarwaha@google.com> | Wed Sep 06 13:56:46 2017 -0700 |
committer | Gina Dimino <gdimino@google.com> | Tue Jun 26 17:51:08 2018 +0000 |
CDD: MUST NOT send user's private data off the device without the user's consent - Ensure that user's private data is protected and is not sent off the device without user's consent. Bug: 74620344 Change-Id: I41559d7d3903ea3d44d1471abe896ad7698ef6be Test: N/A
commit | 6659cbc8d1b24361e56b02db8727f3bddf9a5b07 | |
---|---|---|
author | Yi Jin <jinyithu@google.com> | Fri Apr 06 11:28:08 2018 -0700 |
committer | Yi Jin <jinyithu@google.com> | Mon Jun 25 22:27:20 2018 +0000 |
CDD: Require to include only the data with 'DEST_AUTO' in the incident report Ensure that the data other than `DEST_AUTO` is not included in the report for privacy protection. As fields or messages annotated with DEST_AUTO can be sent by automatic means, without per-sending user consent. The user still must have previously accepted a consent to share this information. Bug: 76161779 Test: N/A Change-Id: I813c96d43395b092ab0e8681893cf205723d26bb
commit | 87da894df332b2acbbbe809d44e80684125ecab1 | |
---|---|---|
author | Victor Hsieh <victorhsieh@google.com> | Wed May 09 09:38:43 2018 -0700 |
committer | Gina Dimino <gdimino@google.com> | Mon Jun 25 18:36:25 2018 +0000 |
CCD: Add recommendations for Full Stack Integrity Android P adds support for extending the protections of Verified Boot beyond OS partitions to privileged apps that are installed on /data. This change recommends that device implementations perform integrity checks of these privileged apps. Test: None Bug: 73001552 Change-Id: I773c4ad431ab0f2c16a762ba342653502ea98912
commit | c180b33ab7ed84e0db99239220b4772ec1d6e480 | |
---|---|---|
author | Jeffrey Vander Stoep <jeffv@google.com> | Tue Jun 05 19:32:02 2018 +0000 |
committer | Android (Google) Code Review <android-gerrit@google.com> | Tue Jun 05 19:32:02 2018 +0000 |
Merge "CDD: Tightening kernel security requirements from SR to MUST" into pi-dev
commit | 5cfa227dfe46fd5ea6d46983abbf0f098de8038c | |
---|---|---|
author | Jeff Vander Stoep <jeffv@google.com> | Wed May 16 12:05:37 2018 -0700 |
committer | Vikas Marwaha <vikasmarwaha@google.com> | Tue Jun 05 18:09:18 2018 +0000 |
CDD: Tightening kernel security requirements from SR to MUST - The tightened MUST requirements are applicable for devices that originally ship with API level 28 and above. These security requirements provide better protections for the kernel by mitigating common classes of vulnerabilities and privilege escalation techniques. Bug: 74078653 Bug: 79088532 Bug: 73728376 Test: n/a Change-Id: I62450948e5474939d94b22b280d11a6d56e35f3e
commit | 3240eddfe2b6a347a00c0fb658b75851ac5d6d84 | |
---|---|---|
author | TreeHugger Robot <treehugger-gerrit@google.com> | Mon Jun 04 23:18:25 2018 +0000 |
committer | Android (Google) Code Review <android-gerrit@google.com> | Mon Jun 04 23:18:25 2018 +0000 |
Merge "CDD: add per-app selinux requirements for P" into pi-dev
commit | 0b1792e034ba1e44ce0bcc7837e2a6a3d17472c2 | |
---|---|---|
author | Jeff Sharkey <jsharkey@android.com> | Thu Mar 29 14:09:33 2018 -0600 |
committer | Jeff Sharkey <jsharkey@android.com> | Tue May 22 14:33:32 2018 -0600 |
CDD: Describe subscription plan security model. Bug: 71816837 Test: ./cdd_gen.sh Change-Id: I670a694bd37436e71b37f4746c5261d2d93b6b91
commit | 489108598df061dff85fdcc9bcbbf52881318499 | |
---|---|---|
author | Jeff Vander Stoep <jeffv@google.com> | Tue Apr 03 12:52:29 2018 -0700 |
committer | Sachiyo Sugimoto <sachiyo@google.com> | Fri May 18 18:36:47 2018 +0000 |
CDD: add per-app selinux requirements for P Apps that target Android P can no longer share data with other apps using world-accessible Unix permissions. This change improves the integrity of the Android Application Sandbox, particularly the requirement that an app's private data is accessible only by that app. [1] To share files with another another app, use a content provider or shared space in external storage. This feature enforces an existing requirement that files saved in internal storage are accessible by the owning app. [2] [1] https://developer.android.com/guide/topics/data/data-storage.html#filesInternal [2] https://developer.android.com/training/data-storage/files.html#PublicFiles Bug: 73728376 Test: n/a Change-Id: Ib2a93fde25f660782f315d5e02978637680f7594
commit | 14e161e9c056c74619e88458becbc5883628b657 | |
---|---|---|
author | sachiyo <sachiyo@google.com> | Thu Feb 15 14:34:03 2018 -0800 |
committer | sachiyo <sachiyo@google.com> | Thu Feb 15 14:34:03 2018 -0800 |
resolve merge conflicts of e7278fe2c0fc37b428b14dcbd4b37ef05eb69678 to oc-mr1-dev-plus-aosp Test: I solemnly swear I tested this conflict resolution. Change-Id: I2b54c7d9f68e6a57fa002bbbea78bde979ee2122
commit | 914062d1ddfcdedd10d80190f33fcd40c7021e69 | |
---|---|---|
author | sachiyo <sachiyo@google.com> | Wed Feb 14 19:07:08 2018 +0000 |
committer | android-build-merger <android-build-merger@google.com> | Wed Feb 14 19:07:08 2018 +0000 |
CDD: Clarify the key attestation is required only for new devices am: 59f5208e19 Change-Id: Id1b0fe34aa6891ee65cc7efaae346fcc7af8a08d
commit | 59f5208e190207220af0aab0467ed55eb2f7ab48 | |
---|---|---|
author | sachiyo <sachiyo@google.com> | Wed Jan 31 12:15:23 2018 -0800 |
committer | sachiyo <sachiyo@google.com> | Wed Jan 31 12:15:23 2018 -0800 |
CDD: Clarify the key attestation is required only for new devices - Add the clarification note for 9.11 [C-1-4]. - Clarified for old devices with earlier version of Android to be exempted from the key attestation requirement. Bug: 72461553 Change-Id: I9b14119bcd67b5aa2063b3fb21b995fd658fc9d7
commit | e56a755700990a889d89e5221f1fd95a9aeea237 | |
---|---|---|
author | Vikas Marwaha <vikasmarwaha@google.com> | Mon Dec 04 18:01:58 2017 +0000 |
committer | android-build-merger <android-build-merger@google.com> | Mon Dec 04 18:01:58 2017 +0000 |
Merge "CDD: Require verified boot when device has enough RAM vs. good AES-crypto performance" into oc-mr1-dev am: 3028793cd4 Change-Id: I4bb0ee4bf995d362f35677cea7fba3cdaa64b225
commit | 3028793cd40ee4c4fb92d4960cc109db58532bf1 | |
---|---|---|
author | Vikas Marwaha <vikasmarwaha@google.com> | Mon Dec 04 17:58:02 2017 +0000 |
committer | Android (Google) Code Review <android-gerrit@google.com> | Mon Dec 04 17:58:02 2017 +0000 |
Merge "CDD: Require verified boot when device has enough RAM vs. good AES-crypto performance" into oc-mr1-dev
commit | 2d5a468ba4dd9874f789224744871e367ecf7206 | |
---|---|---|
author | Vikas Marwaha <vikasmarwaha@google.com> | Mon Dec 04 17:56:27 2017 +0000 |
committer | android-build-merger <android-build-merger@google.com> | Mon Dec 04 17:56:27 2017 +0000 |
Merge "CDD: Require secure storage of lock screen credentials" into oc-mr1-dev am: 0ea6e466a7 Change-Id: Id91984da103cbdc1991259ef1606c70455ddf5de
commit | 0ea6e466a7a0074e0ab1aef56c73faf3b8223c1a | |
---|---|---|
author | Vikas Marwaha <vikasmarwaha@google.com> | Mon Dec 04 17:51:20 2017 +0000 |
committer | Android (Google) Code Review <android-gerrit@google.com> | Mon Dec 04 17:51:20 2017 +0000 |
Merge "CDD: Require secure storage of lock screen credentials" into oc-mr1-dev
commit | 7b23fff790986cae9a6390a55145b406eded6ef5 | |
---|---|---|
author | Christian Bejram <cbejram@google.com> | Wed Nov 22 21:12:58 2017 +0000 |
committer | Sachiyo Sugimoto <sachiyo@google.com> | Mon Dec 04 02:48:28 2017 +0000 |
CDD: Require verified boot when device has enough RAM vs. good AES-crypto performance Update verified boot requirement to be MUST for devices that report feature flag android.hardware.ram.normal Bug: 35039737 Test: N/A Change-Id: If7346873f92879a551935b55597762a46b5e89c8
commit | 0f9dde6dd87f7e6dbe0fb474951d2dc9481c75a1 | |
---|---|---|
author | Vikas Marwaha <vikasmarwaha@google.com> | Sat Dec 02 02:41:26 2017 +0000 |
committer | android-build-merger <android-build-merger@google.com> | Sat Dec 02 02:41:26 2017 +0000 |
Merge "CDD: Changes to measure biometric unlock security." into oc-mr1-dev am: 3a6ff29410 Change-Id: Icfeef51e12db5335f3238adc0fc62cc25153abd1
commit | 3a6ff29410796cc7539be94c35f5d0dfdb70b518 | |
---|---|---|
author | Vikas Marwaha <vikasmarwaha@google.com> | Sat Dec 02 02:36:38 2017 +0000 |
committer | Android (Google) Code Review <android-gerrit@google.com> | Sat Dec 02 02:36:38 2017 +0000 |
Merge "CDD: Changes to measure biometric unlock security." into oc-mr1-dev
commit | 22e9a224d9de7abb6df16bc202c1874e4fbcf2a7 | |
---|---|---|
author | Vikas Marwaha <vikasmarwaha@google.com> | Sat Dec 02 02:20:55 2017 +0000 |
committer | android-build-merger <android-build-merger@google.com> | Sat Dec 02 02:20:55 2017 +0000 |
Merge "CDD: AES encrypt the encryption key by default" into oc-mr1-dev am: 009ff2c391 Change-Id: I85ef23cb266b77f816ab462b189ee2fc36d72aac
commit | 009ff2c391d19a30cde04b30d15627e17aa5089f | |
---|---|---|
author | Vikas Marwaha <vikasmarwaha@google.com> | Sat Dec 02 02:17:07 2017 +0000 |
committer | Android (Google) Code Review <android-gerrit@google.com> | Sat Dec 02 02:17:07 2017 +0000 |
Merge "CDD: AES encrypt the encryption key by default" into oc-mr1-dev
commit | 8622c7b0c04b2cfe798171980c39b03be13531db | |
---|---|---|
author | Adrian Roos <roosa@google.com> | Thu Nov 02 16:11:32 2017 +0100 |
committer | Sachiyo Sugimoto <sachiyo@google.com> | Fri Dec 01 21:59:12 2017 +0000 |
CDD: Require secure storage of lock screen credentials - With credential-based Factory Reset Protection, the credential handle is stored on an unencrypted partition. To maintain security guarantees, implementations must make sure that the handle does not leak information about the credential. Bug: 64209214 Test: n/a Change-Id: I55f15cc75502016824d9307c03d947c4041744b0
commit | 1c40ba3467ea0492b712b7cc02cbf3b07af43c67 | |
---|---|---|
author | Vishwath Mohan <vishwath@google.com> | Mon Nov 06 05:38:04 2017 -0800 |
committer | Vikas Marwaha <vikasmarwaha@google.com> | Thu Nov 30 00:30:40 2017 +0000 |
CDD: Changes to measure biometric unlock security. Adds imposter and spoof acceptance rate metrics for biometric based unlocks, and mandates showing a disclosure of the risks involved when an unlock modality does not meet the bar. Bug: 66013719 Bug: 63910023 Test: N/A Change-Id: I6a129481c0036c756f8c7d95cf3da1bab9f3f0f1
commit | b19a7cf136735abd9fafd2072fa43fe0f5ec489e | |
---|---|---|
author | Gian Spicuzza <gian@google.com> | Fri Oct 27 10:20:44 2017 -0700 |
committer | Sachiyo Sugimoto <sachiyo@google.com> | Mon Nov 27 23:28:33 2017 +0000 |
CDD: AES encrypt the encryption key by default For Android O-MR1 we are requiring that all encryption keys are encrypted with AES by default, unless the user explicitly opts out. Bug: 33744049 Change-Id: Ic74dcd960ef89b752f580bd2ce2e42acca643c1f Test: Not necessary -- this is a policy change.
commit | 8ee1966a366a7898a52cceaa668166f098908f57 | |
---|---|---|
author | Gina Dimino <gdimino@google.com> | Wed Aug 30 16:22:07 2017 -0700 |
committer | Vikas Marwaha <vikasmarwaha@google.com> | Thu Nov 16 22:57:48 2017 +0000 |
Docs: Move dev-specific reqs to Ch 2. Test: python make_cdd.py --version <version-number> --branch <mybranch> Bug: 64164626 Merged-In: Ie091c0be79ad4a797f26a60e95ee2594f053f804 Change-Id: Ie091c0be79ad4a797f26a60e95ee2594f053f804 (cherry picked from commit 0ece682cb7f915f4289ba6d7b5c86957e6d5d276) (cherry picked from commit d72cc3b7971126e352c0c8fd83693f458d3785ec)
commit | 493bf1fc05740f2daf9e70ff50ff2f7e09a63644 | |
---|---|---|
author | Gina Dimino <gdimino@google.com> | Wed Aug 30 16:22:07 2017 -0700 |
committer | Vikas Marwaha <vikasmarwaha@google.com> | Wed Nov 15 12:48:36 2017 -0800 |
Docs: Move dev-specific reqs to Ch 2. Test: python make_cdd.py --version <version-number> --branch <mybranch> Bug: 64164626 Change-Id: Ie091c0be79ad4a797f26a60e95ee2594f053f804 (cherry picked from commit 0ece682cb7f915f4289ba6d7b5c86957e6d5d276)
commit | 2a116a5733aba4c4a730fdb4464d0eee2f46b713 | |
---|---|---|
author | Charles He <qiurui@google.com> | Mon Nov 13 05:37:27 2017 +0000 |
committer | android-build-merger <android-build-merger@google.com> | Mon Nov 13 05:37:27 2017 +0000 |
Merge "CDD: add requirement for always-on VPN opt-out." into oc-mr1-dev am: f06e564dad Change-Id: I75be2df0c94c8296ca0bacf73d7053727e8b2840
commit | 272093fb21d19142316842fd1a6d3faa5b4f1302 | |
---|---|---|
author | Charles He <qiurui@google.com> | Sun Oct 08 15:38:13 2017 +0100 |
committer | Charles He <qiurui@google.com> | Wed Oct 18 08:46:51 2017 +0000 |
CDD: add requirement for always-on VPN opt-out. Require UI implementations to observe the always-on VPN opt-out manifest flag in app manifest, if such implementation exists. See VpnService.SERVICE_META_DATA_SUPPORTS_ALWAYS_ON Bug: 65561270 Test: N/A Change-Id: Ie0b5ea506affbec0ab3b0268c2539bc0184721aa
commit | 0fe6d2635182b378871cef045faf728a5f24aa16 | |
---|---|---|
author | Gina Dimino <gdimino@google.com> | Tue Oct 17 10:06:29 2017 -0700 |
committer | Gina Dimino <gdimino@google.com> | Tue Oct 17 10:06:56 2017 -0700 |
resolve merge conflicts of ece1909 to oc-dr1-dev-plus-aosp Test: I solemnly swear I tested this conflict resolution. Change-Id: Ib9a6ce41855fccf246dd4a8234c91477f49ad3c6
commit | 7d329ec2689c8ef8162410c85a1ee3b1fecbead2 | |
---|---|---|
author | Vikas Marwaha <vikasmarwaha@google.com> | Mon Oct 16 17:28:00 2017 +0000 |
committer | android-build-merger <android-build-merger@google.com> | Mon Oct 16 17:28:00 2017 +0000 |
Merge "CDD: O errata changes" into oreo-dev am: c5356bbfa3 am: ac54447388 am: 8c931afc0f Change-Id: Ice1528d34191d08dc6040b7da3c626e2f4489330
commit | 2d275dda7d7653b9620301e80238f9e7a276f270 | |
---|---|---|
author | Gina Dimino <gdimino@google.com> | Fri Oct 13 13:50:25 2017 -0700 |
committer | Gina Dimino <gdimino@google.com> | Mon Oct 16 10:20:16 2017 -0700 |
Docs: Misc fixes for CDD. Bug: 67405273 Test: make_cdd.py --version 8.0 --branch "oc-dev" Change-Id: Icee371d41284f56ef6d9ad90ab8992c94134d5bd
commit | eb5dd2ece31377bd1c0d4e7c0d78d2530ab00943 | |
---|---|---|
author | Vikas Marwaha <vikasmarwaha@google.com> | Thu Sep 21 14:42:32 2017 -0700 |
committer | Vikas Marwaha <vikasmarwaha@google.com> | Mon Oct 16 17:17:46 2017 +0000 |
CDD: O errata changes Fixes to missing/incorrect id's in CDD. Bug: 66482816 Test: N/A Change-Id: I8241e1f96f7bc2c5d9e190e96da87fcb504cde02
commit | 0ece682cb7f915f4289ba6d7b5c86957e6d5d276 | |
---|---|---|
author | Gina Dimino <gdimino@google.com> | Wed Aug 30 16:22:07 2017 -0700 |
committer | Gina Dimino <gdimino@google.com> | Thu Aug 31 19:14:44 2017 -0700 |
Docs: Move dev-specific reqs to Ch 2. Test: python make_cdd.py --version <version-number> --branch <mybranch> Bug: 64164626 Change-Id: Ie091c0be79ad4a797f26a60e95ee2594f053f804
commit | 0b44a0e495546e6dbfeeae1503a99e47f9f536d4 | |
---|---|---|
author | Vikas Marwaha <vikasmarwaha@google.com> | Wed Aug 30 21:20:10 2017 +0000 |
committer | Android (Google) Code Review <android-gerrit@google.com> | Wed Aug 30 21:20:10 2017 +0000 |
Merge "Docs: Restructure section 9.8." into oc-dev
commit | cfd103191a9d9d4332fac77baa3f1be515374e37 | |
---|---|---|
author | Vikas Marwaha <vikasmarwaha@google.com> | Wed Aug 30 21:19:23 2017 +0000 |
committer | Android (Google) Code Review <android-gerrit@google.com> | Wed Aug 30 21:19:23 2017 +0000 |
Merge "Docs: Restructure section 9.9." into oc-dev
commit | a22fc1b0fdc4dca4888c6045a763b20a459586fb | |
---|---|---|
author | Vikas Marwaha <vikasmarwaha@google.com> | Wed Aug 02 16:19:45 2017 -0700 |
committer | Vikas Marwaha <vikasmarwaha@google.com> | Wed Aug 30 21:18:43 2017 +0000 |
Docs: Restructure section 9.9. Part of restructuring work for CDD. Test: N/A Bug: 64811960 Change-Id: If35c39e10f621e1b9bad51eb9a89770815d2226d
commit | bc1609d9037ea8e2561b690abf08f0427c1d836b | |
---|---|---|
author | Vikas Marwaha <vikasmarwaha@google.com> | Wed Aug 30 21:16:40 2017 +0000 |
committer | Android (Google) Code Review <android-gerrit@google.com> | Wed Aug 30 21:16:40 2017 +0000 |
Merge "Docs: Restructure section 9.14." into oc-dev
commit | b0fed12e5a94fd847bea9f56383b024cb3932b23 | |
---|---|---|
author | Vikas Marwaha <vikasmarwaha@google.com> | Wed Aug 02 17:03:55 2017 -0700 |
committer | Vikas Marwaha <vikasmarwaha@google.com> | Wed Aug 30 21:16:18 2017 +0000 |
Docs: Restructure section 9.14. Part of restructuring work for CDD. Test: N/A Bug: 64811960 Change-Id: I8f106180bb29452ce3de28ba100dcb76dae74737
commit | 2a7d57049faa18821bdff6c05f4ce6da68557adc | |
---|---|---|
author | Vikas Marwaha <vikasmarwaha@google.com> | Wed Aug 30 21:14:24 2017 +0000 |
committer | Android (Google) Code Review <android-gerrit@google.com> | Wed Aug 30 21:14:24 2017 +0000 |
Merge "Docs: Restructure section 9.6." into oc-dev
commit | dcbb723735a594da57e0d5346af4f88333a5a1ae | |
---|---|---|
author | Vikas Marwaha <vikasmarwaha@google.com> | Wed Aug 02 16:11:25 2017 -0700 |
committer | Vikas Marwaha <vikasmarwaha@google.com> | Wed Aug 30 21:14:07 2017 +0000 |
Docs: Restructure section 9.6. Part of restructuring work for CDD. Test: N/A Bug: 64811960 Change-Id: I82b2f7099ec8811980b90b7a6969b5865fd25740
commit | 2e4030d7362141e6f38af8203517eca799cdf687 | |
---|---|---|
author | Vikas Marwaha <vikasmarwaha@google.com> | Wed Aug 30 21:13:13 2017 +0000 |
committer | Android (Google) Code Review <android-gerrit@google.com> | Wed Aug 30 21:13:13 2017 +0000 |
Merge "Docs: Restructure section 9.3." into oc-dev
commit | b9dd68f4a074f51f9f24d3ff7874a666e218b9f5 | |
---|---|---|
author | Vikas Marwaha <vikasmarwaha@google.com> | Wed Aug 30 21:09:00 2017 +0000 |
committer | Android (Google) Code Review <android-gerrit@google.com> | Wed Aug 30 21:09:00 2017 +0000 |
Merge "Docs: Restructure section 9.11" into oc-dev
commit | ae5f1ba7beaa6032d780753ccf57340b1e8d2d22 | |
---|---|---|
author | Vikas Marwaha <vikasmarwaha@google.com> | Wed Aug 02 16:24:44 2017 -0700 |
committer | Vikas Marwaha <vikasmarwaha@google.com> | Wed Aug 30 21:08:14 2017 +0000 |
Docs: Restructure section 9.11 Part of restructuring work for CDD. Test: N/A Bug: 64811960 Change-Id: I2d8ccd24e8572d397f38718088cc43274962bf12
commit | bd72bedd45bb178dc38718127b516c8ca3becc6b | |
---|---|---|
author | Vikas Marwaha <vikasmarwaha@google.com> | Wed Aug 30 21:05:51 2017 +0000 |
committer | Android (Google) Code Review <android-gerrit@google.com> | Wed Aug 30 21:05:51 2017 +0000 |
Merge "Docs: Restructure section 9.12." into oc-dev
commit | b031a610d8def91f0470c77f775381652db13d92 | |
---|---|---|
author | Vikas Marwaha <vikasmarwaha@google.com> | Wed Aug 30 21:05:14 2017 +0000 |
committer | Android (Google) Code Review <android-gerrit@google.com> | Wed Aug 30 21:05:14 2017 +0000 |
Merge "Docs: Restructure section 9.10." into oc-dev
commit | 20e8cd21351ee2a41fa505f35b71a8b6b7b9915f | |
---|---|---|
author | Vikas Marwaha <vikasmarwaha@google.com> | Wed Aug 02 16:22:00 2017 -0700 |
committer | Vikas Marwaha <vikasmarwaha@google.com> | Wed Aug 30 21:04:39 2017 +0000 |
Docs: Restructure section 9.10. Part of restructuring work for CDD. Test: N/A Bug: 64811960 Change-Id: Ic2ce057ffc3d072c4aacd52d4f0c8ebe578e9c61
commit | 9ffa7702733135118175ffca608dd0c6df145274 | |
---|---|---|
author | Vikas Marwaha <vikasmarwaha@google.com> | Wed Aug 30 21:03:39 2017 +0000 |
committer | Android (Google) Code Review <android-gerrit@google.com> | Wed Aug 30 21:03:39 2017 +0000 |
Merge "Docs: Restructure section 9.4." into oc-dev
commit | acd396f86bd765fd07f1d8cf044c33bc067cf7b0 | |
---|---|---|
author | Vikas Marwaha <vikasmarwaha@google.com> | Wed Aug 30 20:53:03 2017 +0000 |
committer | Android (Google) Code Review <android-gerrit@google.com> | Wed Aug 30 20:53:03 2017 +0000 |
Merge "Docs: Restructure CDD section 9.1." into oc-dev
commit | a9dfc6e2be186c946b418002f7612269c395491d | |
---|---|---|
author | Vikas Marwaha <vikasmarwaha@google.com> | Wed Aug 02 15:44:38 2017 -0700 |
committer | Vikas Marwaha <vikasmarwaha@google.com> | Wed Aug 30 20:51:30 2017 +0000 |
Docs: Restructure CDD section 9.1. Part of restructuring work for CDD. Test: N/A Bug: 64811960 Change-Id: I912f83d868078cc90345766ce6dc5e05efc8078c
commit | bdd53fb85a298eba7309012977dfe2db44f6a23b | |
---|---|---|
author | Vikas Marwaha <vikasmarwaha@google.com> | Wed Aug 02 16:17:17 2017 -0700 |
committer | Vikas Marwaha <vikasmarwaha@google.com> | Wed Aug 30 17:29:17 2017 +0000 |
Docs: Restructure section 9.8. Part of restructuring work for CDD. Test: N/A Bug: 64811960 Change-Id: I33113c2c4b5026ecd9155d5dc5c2a81743db3407
commit | 1638fbf7d44cd4ba166b83ef991c664f05e5e75b | |
---|---|---|
author | Sachiyo Sugimoto <sachiyo@google.com> | Tue Aug 29 20:22:41 2017 +0000 |
committer | Android (Google) Code Review <android-gerrit@google.com> | Tue Aug 29 20:22:41 2017 +0000 |
Merge "Docs: Restructure section 9.2." into oc-dev
commit | 668c3a0fffb101d62cedae49638acc4ba1ba1f5a | |
---|---|---|
author | Sachiyo Sugimoto <sachiyo@google.com> | Tue Aug 29 20:21:41 2017 +0000 |
committer | Android (Google) Code Review <android-gerrit@google.com> | Tue Aug 29 20:21:41 2017 +0000 |
Merge "Docs: Restructure section 9.13." into oc-dev
commit | 0517581350a5ac5c784ff35adc7c2304073ae9c5 | |
---|---|---|
author | Sachiyo Sugimoto <sachiyo@google.com> | Tue Aug 29 20:21:36 2017 +0000 |
committer | Android (Google) Code Review <android-gerrit@google.com> | Tue Aug 29 20:21:36 2017 +0000 |
Merge "Docs: Restructure section 9.7." into oc-dev
commit | c2367af9e6aaf4b616fdb7eec79a2d034a0b208a | |
---|---|---|
author | Sachiyo Sugimoto <sachiyo@google.com> | Tue Aug 29 20:21:32 2017 +0000 |
committer | Android (Google) Code Review <android-gerrit@google.com> | Tue Aug 29 20:21:32 2017 +0000 |
Merge "Docs: Restructured section 9.5." into oc-dev
commit | 76bd33f05d4457f5c52aaa14104ca967a0f80c80 | |
---|---|---|
author | Vikas Marwaha <vikasmarwaha@google.com> | Wed Aug 02 15:49:43 2017 -0700 |
committer | Sachiyo Sugimoto <sachiyo@google.com> | Tue Aug 29 20:12:05 2017 +0000 |
Docs: Restructure section 9.2. Part of restructuring work for CDD. Test: N/A Bug: 64811960 Change-Id: I9cf7fbb4938b714682b434da196b2321a9b9bcea
commit | d39389b52f4b1440792004c493e5e73f6c0fcd6e | |
---|---|---|
author | Vikas Marwaha <vikasmarwaha@google.com> | Wed Aug 02 16:29:09 2017 -0700 |
committer | Sachiyo Sugimoto <sachiyo@google.com> | Tue Aug 29 18:43:55 2017 +0000 |
Docs: Restructure section 9.13. Part of restructuring work for CDD. Test: N/A Bug: 64811960 Change-Id: Icb98a0c74708c61cec94db74d04e17ec38ab819b
commit | afa2e6e26b850105a24e5718f3d88b4a2d1ce071 | |
---|---|---|
author | Vikas Marwaha <vikasmarwaha@google.com> | Wed Aug 02 16:14:42 2017 -0700 |
committer | Sachiyo Sugimoto <sachiyo@google.com> | Tue Aug 29 17:20:26 2017 +0000 |
Docs: Restructure section 9.7. Part of restructuring work for CDD. Test: N/A Bug: 64811960 Change-Id: I076fa1c1ce0a11ebc20e90e088cbd64b08046832
commit | 0dce5fd7238c026965d85f8fe337219bff2ab32d | |
---|---|---|
author | Vikas Marwaha <vikasmarwaha@google.com> | Wed Aug 02 16:05:36 2017 -0700 |
committer | Sachiyo Sugimoto <sachiyo@google.com> | Tue Aug 29 17:15:54 2017 +0000 |
Docs: Restructured section 9.5. Part of restructuring work for CDD. Test: N/A Bug: 64811960 Change-Id: If8e02513604ce19e695e0033ea5a98a6a2d5c00b
commit | 1829383f97318b1e0d9d562262a205294ded84a4 | |
---|---|---|
author | Sachiyo Sugimoto <sachiyo@google.com> | Wed Aug 23 21:13:30 2017 +0000 |
committer | Android (Google) Code Review <android-gerrit@google.com> | Wed Aug 23 21:13:30 2017 +0000 |
Merge "Docs: Restructure CDD section 9.0." into oc-dev
commit | 2d4428d069984e0f155141fdfae55b5a72beb267 | |
---|---|---|
author | Vikas Marwaha <vikasmarwaha@google.com> | Wed Aug 02 16:26:53 2017 -0700 |
committer | Vikas Marwaha <vikasmarwaha@google.com> | Wed Aug 23 18:58:45 2017 +0000 |
Docs: Restructure section 9.12. Part of restructuring work for CDD. Test: N/A Bug: 64811960 Change-Id: I4402611e292482ed38e508716677c6b6c61be94d
commit | 06368843d853057634ebd59f4af4a7fb42267abc | |
---|---|---|
author | Vikas Marwaha <vikasmarwaha@google.com> | Wed Aug 02 15:53:37 2017 -0700 |
committer | Vikas Marwaha <vikasmarwaha@google.com> | Wed Aug 23 18:27:57 2017 +0000 |
Docs: Restructure section 9.3. Part of restructuring work for CDD. Test: N/A Bug: 64811960 Change-Id: If9d5d1be2b256923d669efe6c66b9d901ba0513b
commit | 1f97171d856d6c3646efc44e30c85ca37e2a4e2e | |
---|---|---|
author | Vikas Marwaha <vikasmarwaha@google.com> | Wed Aug 02 16:00:01 2017 -0700 |
committer | Vikas Marwaha <vikasmarwaha@google.com> | Tue Aug 22 17:58:59 2017 +0000 |
Docs: Restructure section 9.4. Part of restructuring work for CDD. Test: N/A Bug: 64811960 Change-Id: I730c279f6067ad1002bb1c75dde664246f7eaa8d
commit | 349bb994b90d6ce47308cc659bcf6445c19d8f16 | |
---|---|---|
author | Vikas Marwaha <vikasmarwaha@google.com> | Wed Aug 02 15:22:35 2017 -0700 |
committer | Sachiyo Sugimoto <sachiyo@google.com> | Thu Aug 17 23:59:19 2017 +0000 |
Docs: Restructure CDD section 9.0. Part of restructuring work for CDD. Test: N/A Bug: 64811960 Change-Id: I840ca61cace0f61fe85353fcedca0627a8647ca7
commit | e2d59119da699223e12183f76708f62ac70909bf | |
---|---|---|
author | Bryan Eyler <bryaneyler@google.com> | Thu Aug 03 14:07:49 2017 -0700 |
committer | Unsuk Jung <unsuk@google.com> | Thu Aug 17 00:09:05 2017 +0000 |
CDD: Add req for the trust agent escrow token system API Add requirements to account for the new methods in TrustAgentService that allow unlocking a device based on escrow tokens. Bug: 36237319 Test: Documentation update. Change-Id: I38cec1d94bbcbcbf97782308dc800abf650d6532
commit | 07ffef7d395f5977cc085d60eafd3c1009046c5d | |
---|---|---|
author | sachiyo <sachiyo@google.com> | Thu Jul 13 11:13:40 2017 -0700 |
committer | Unsuk Jung <unsuk@google.com> | Wed Jul 26 18:28:26 2017 +0000 |
CDD: Require checking the primary authentication periodically - Added this requirement for the following reasons: - Security; The supplemental unlocks are less secure than the primary credential so limit the risk by periodically asking for the main password. - Usability; Make sure the user enters their primary knowledge factor often enough not to forget it. Bug: 38314942 Change-Id: I664813f58f5881c51500559eb7175fd759885d9e
commit | 2997fd5030107c5e509f9255f9670f4c40097a30 | |
---|---|---|
author | TreeHugger Robot <treehugger-gerrit@google.com> | Fri Jul 21 23:20:15 2017 +0000 |
committer | Android (Google) Code Review <android-gerrit@google.com> | Fri Jul 21 23:20:15 2017 +0000 |
Merge "CDD: Updated Kernel security requirements." into oc-dev
commit | 9ea4f3f91436245a8197707222ace956d16245d6 | |
---|---|---|
author | Vikas Marwaha <vikasmarwaha@google.com> | Tue Jun 20 14:31:04 2017 -0700 |
committer | Vikas Marwaha <vikasmarwaha@google.com> | Wed Jul 19 22:33:19 2017 +0000 |
CDD: Updated Kernel security requirements. Added requirements to make sure the Android ecosystem has a minimum safe bar for kernel configurations. Bug: 36371578 Test: N/A Change-Id: Iea6207dfd5805392ea1bbdf232004d32cc19ff52
commit | 92927c567c448e2c3812fca19887a045c619c129 | |
---|---|---|
author | Yu-Han Yang <yuhany@google.com> | Thu Jul 13 22:56:40 2017 +0000 |
committer | Android (Google) Code Review <android-gerrit@google.com> | Thu Jul 13 22:56:40 2017 +0000 |
Merge "CDD: Require indicating to the user the impact of TrustAgentService on screen locks." into oc-dev
commit | fd37856aa2d925a684fdb9740fd65687e5b6fbdc | |
---|---|---|
author | Vikas Marwaha <vikasmarwaha@google.com> | Thu Jul 13 21:30:06 2017 +0000 |
committer | Android (Google) Code Review <android-gerrit@google.com> | Thu Jul 13 21:30:06 2017 +0000 |
Merge "CDD: Require user affordances to grant/revoke PACKAGE_USAGE_STATS permission." into oc-dev
commit | 175b4e6734771d56d20df8b146eed81b1cab84e9 | |
---|---|---|
author | yuhany <yuhany@google.com> | Tue Jul 11 17:04:00 2017 -0700 |
committer | Yu-Han Yang <yuhany@google.com> | Thu Jul 13 15:40:56 2017 +0000 |
CDD: Require indicating to the user the impact of TrustAgentService on screen locks. TrustAgentService is able to change the behavior of screen locks, and hence such a state has to be indicated to the end user in a more transparent way. Test: description only Bug: 35849818 Change-Id: Id4e1cd29bbfc2e2c51ee0d852a30983a69c4786a
commit | eb2eada3af559fae1020ef537ba6fd5c0514dfc3 | |
---|---|---|
author | Vikas Marwaha <vikasmarwaha@google.com> | Mon Jun 19 15:56:16 2017 -0700 |
committer | Vikas Marwaha <vikasmarwaha@google.com> | Wed Jul 12 20:17:27 2017 +0000 |
CDD: Require user affordances to grant/revoke PACKAGE_USAGE_STATS permission. Without the user-accessible mechanism, the android.app.usage package APIs can't be granted/revoked despite the API documents for the android.app.usage package multiple times referring to "However, declaring the permission implies intention to use the API and the user of the device can grant permission through the Settings application." Bug: 34107152 Test: N/A Change-Id: Ie7385f54c024a72e943bf7b6d33b13d0b7ce6806
commit | 46f33045c51e51ca7a532453f4211fd1868e60ec | |
---|---|---|
author | TreeHugger Robot <treehugger-gerrit@google.com> | Wed Jul 12 07:25:08 2017 +0000 |
committer | Android (Google) Code Review <android-gerrit@google.com> | Wed Jul 12 07:25:08 2017 +0000 |
Merge "CDD: Require a default passcode to wrap the encryption key" into oc-dev