CHAPTER 1 Overview
Android-Level Security Hardening
Major Android- level system- level developments have been incorporated into AudioCodes'
Native Teams devices to improve security:
See Google Play Services below
■
■
See Running Android in Kiosk Mode below
See Screen Lock on the next page
■
■
See AudioCodes Private Key on the next page
See Android Debug Bridge (ADB) on the next page
■
■
See App Signing on the next page
■
See Web Browser on the next page
See Remote Configuration Management on the next page
■
■
See AudioCodes Device Manager Validation on page 8
See Sandboxing on page 8
■
■
See Device File System on page 8
See Keystore on page 8
■
■
See Device Certificate on page 8
See Data Protection on page 9
■
■
See Debugging Interface on page 9
■
See Android Security Updates on page 9
Google Play Services
Goggle Play services were removed from the AudioCodes Native Teams device software. Access
to any Google store or Play service is not allowed.
■
Updating the AudioCodes Native Teams device's Android software and application is
performed via special software components that either connect to the Teams Admin
Center or to AudioCodes' Device Manager over a secured channel.
Running Android in Kiosk Mode
Android Kiosk Lockdown software 'locks down' Android devices to only allow essential apps by
disabling access to the Home / Launcher. Using Android Kiosk Lockdown software, Android
devices can be converted into public kiosk terminals or secured work devices.
■
Only specific Microsoft apps and AudioCodes-signed apps that were certified and approved
in the certification process c an run in Kiosk mode; even if a malicious user manages to
install a new unauthorized app on the file system, the launcher on the AudioCodes Native
Teams device will only run those specific approved apps and this cannot be changed in run
time (only with a new software code provided by AudioCodes).
C455HD | Users & Administrator's Manual
- 6 -