Project

General

Profile

Actions
For Android security patch analysis, the level of permissions requested are:
  • ACCESS_NETWORK_STATE: To check for available network
  • INTERNET: To download patch tests and upload test results
  • RECEIVE_BOOT_COMPLETED: To check whether build version has changed since last test

For mobile network security tests, the level of permissions requested are:

  • ACCESS_FINE_LOCATION / ACCESS_COARSE_LOCATION: Allow you to record your location when IMSI catchers and security events are detected
  • ACCESS_NETWORK_STATE: Is used to check for available network so that up or downloads can proceed
  • ACCESS_SUPERUSER: To use the non API supported Qualcomm diagnosis interface to capture radio data, you need root access. See below.
  • CALL_PHONE/ SEND_SMS / RECEIVE_SMS: Needed to make the test calls used to generate the network traffic to be analyzed
  • GET_TASKS: Retrieve state of helper processes interacting with diagnostic interface
  • INTERNET: Is used to download new data from gsmmap.org and to upload radio traces and debug logs upon user request
  • READ/WRITE_EXTERNAL_STORAGE: To allow saving debug/trace logs to your SD card
  • READ_PHONE_STATE: Used to detect what kind of network you are currently using (GSM,UMTS,LTE etc)
  • RECEIVE_BOOT_COMPLETED: To start app automatically when phone is restarted
  • GET_TASKS: Retrieve state of helper processes interacting with diagnostic interface
  • WAKE_LOCK: Stop phone from falling asleep during long-running analysis steps

In addition, the mobile network security tests require root privileges, which are only used to access the /dev/diag interface from which baseband information is read.

Updated by Ben over 6 years ago · 2 revisions