Mobile Systems and Smartphone Security�(MOBISEC 2020)

Prof: Yanick Fratantonio�EURECOM

1

(Very) Quick History on Smartphones

The "first" smartphone: iPhone (2007)

3

Then, more players

4

Google’s Android (2008)

Microsoft’s Windows Phone (2010)

Complex Ecosystem

• Core aspect: mobile apps

​

• Mobile apps are the “why” people find smartphones useful

​

• Apps give developers ways to make their work available

​

• There must be incentives for developers as well

5

Apple’s Strategy

• Apple’s iOS ecosystem is quite closed
• iOS is closed source
• iOS and iOS apps can only run on Apple devices
• You can install apps only from the Apple Store
• Tricky to “jailbreak” iOS devices

​

• How come are they still around?
• They were the first ~> significant chunk of market share
• They make great products, and people know about it

​

6

Google’s Strategy

• Android Inc. started developing Android in 2003
• Google purchased them in 2005

​

• Google needed to catch up
• The “Open Handset Alliance” (84 companies)
• Ecosystem is much more open
• Android / AOSP is open source
• Android can run on many different devices, even non-Google ones
• Easy to inspect Android apps / reverse them / modify them
• Easy to install apps you develop (“side loading”)
• Developers can do many more things
• Quite easy to “jailbreak” Android devices

7

Microsoft Strategy (?)

• Windows Phone launched in 2010
• It primarily aimed at the enterprise market

​

• Phones were actually quite nice, but developers didn’t believe it could make it…

​

• ...not many apps out there ~> it eventually faded over

8

Android vs iOS recap

9

Android vs iOS recap

10

Android vs iOS recap

11

This class: focus on Android

• We’ll learn the ins/outs of Android
• (But we’ll also check some iOS-related things later on)

​

• From how to develop simple apps to analyze complex ones, find security bugs, and steal their secrets

​

• I’ll try to keep it hands-on

​

​

12