Artwork for podcast Android Bytes (powered by Esper)
The secret world of Android SafetyNet
Episode 1128th March 2022 • Android Bytes (powered by Esper) • Esper.io
00:00:00 00:44:09

Share Episode

Shownotes

On this week's episode, we get caught up in the whirlwind of one of the many such cat-and-mouse games in Android development between power users and app developers which involves root access, trusted environments, security checks, and Google. What's happened and what's up next in this seemingly never-ending treadmill and what good is there for it to exist? You'd be surprised.

We're joined by Danny Lin, an independent Android developer, and Sergio Castell, a mobile security analyst and longtime modder best known as linuxct.

  • 02:09 - What is SafetyNet and what does it do?
  • 06:41 - How do modders get around SafetyNet?
  • 11:22 - What advantages does each side of this battle have?
  • 15:33 - What is hardware attestation? What makes it hard to break? Can it be bypassed?
  • 24:50 - What options do developers have in ensuring their apps are operating in safe envrionments?
  • 32:26 - What's the overall outlook as Google begins to replace SafetyNet with its new Play Integrity API?

Android Bytes is hosted by Mishaal Rahman, Senior Technical Editor, and David Ruddock, Editor in Chief, of Esper.

For more about Esper, visit us.

Our music is "19" by HOME and is licensed under CC BY 3.0.