Each part of Android ecosystem works together to build a strong defense that run smoothly and effectively. Google work with 30 to 50 teams outside android security team to secure the Android.

Focus Area

App Safety Engineering

Defend against internet-borne threat. Anything deals with security of application which belong or not belong to the Play-Store.

Teams like malware analysis team, malware research team, Unwanted behavior analysis team, Google play policy detection and so on work on this target.

Platform Safety Engineering

Google work on security of OS and device to make platform safer. Some teams like Cryptography team, Trusted execution environment team and so on works on this target.

Security Assurance

This area is for how to securely develop android applications. For example how to make sure only safe code goes to apps in the first place. And how to manage vulnerabilities and patch system.

Android Security Improvements

Security Enhancements  |  Android Open Source Project

Modern Mobile Attack Analysis

1. System: Attacks in area of platform which is handled by platform security team.
2. Apps: Attacks in area of application like malware and vulnerabilities of applications
3. Phishing: Attacks in area of social engineering and phishing.
4. Enduser: Attacks in area of wrong decisions witch made by users.

Note

<aside> 💡 Google believes malware protection should be built-in to the OS

</aside>