[譯]Android 安全概述之簡介

Android 是一個設計成徹底開放的現代的移動平臺。Android 應用程序經過使用暴漏給平臺的先進的硬件和軟件，以及本地和服務的數據，給消費者帶來創新和價值。爲了保護那價值，這個平臺必須提供一個應用環境，保證用戶、數據、應用、設備和網絡的安全。

Android is a modern mobile platform that was designed to be truly open. Android applications make use of advanced hardware and software, as well as local and served data, exposed through the platform to bring innovation and value to consumers. To protect that value, the platform must offer an application environment that ensures the security of users, data, applications, the device, and the network.

一個開放的平臺的安全性須要一個強健的安全體系和嚴格的安全程序。Android 採用靈活的多層安全設計，同時爲該平臺的全部用戶提供保護。

Securing an open platform requires a robust security architecture and rigorous security programs. Android was designed with multi-layered security that provides the flexibility required for an open platform, while providing protection for all users of the platform.

Android 設計時考慮了開發者。安全控制是爲了下降開發者的負擔。安全知識豐富的開發者能夠很容易地使用和依賴靈活的安全控制工做。對安全不瞭解的開發者將經過缺省安全保護。

Android was designed with developers in mind. Security controls were designed to reduce the burden on developers. Security-savvy developers can easily work with and rely on flexible security controls. Developers less familiar with security will be protected by safe defaults.

Android 在設計時考慮來設備用戶。用戶可直觀地瞭解應用程序如何工做，以及控制那些應用程序。這個設計考慮到了攻擊者一般會嘗試的攻擊，如說服設備用戶安裝惡意軟件的社會工程攻擊，以及在 Android 上第三方應用程序的攻擊。Android 設計就是爲了減小這些攻擊的可能性和極大限制了那些攻擊成功事件的影響。

Android was designed with device users in mind. Users are provided visibility into how applications work, and control over those applications. This design includes the expectation that attackers would attempt to perform common attacks, such as social engineering attacks to convince device users to install malware, and attacks on third-party applications on Android. Android was designed to both reduce the probability of these attacks and greatly limit the impact of the attack in the event it was successful.

本文檔介紹了 Android 安全計劃的目標，描述了 Android 的安全體系結構的基礎，併爲系統設計師和分析師回答了相關問題。本文檔的重點是 Android 的核心平臺的安全特性和不討論那些特定的應用程序的安全問題，如那些和瀏覽器或短信有關的應用。構建 Android 設備，部署 Android 設備，或爲 Android 開發應用程序的推薦的最佳實踐並非本文檔的目標，這些在其餘地方提供。

This document outlines the goals of the Android security program, describes the fundamentals of the Android security architecture, and answers the most pertinent questions for system architects and security analysts. This document focuses on the security features of Android's core platform and does not discuss security issues that are unique to specific applications, such as those related to the browser or SMS application. Recommended best practices for building Android devices, deploying Android devices, or developing applications for Android are not the goal of this document and are provided elsewhere.