Linux Kernel
Threading and low-level memory management.
Security
- A user-based permissions model
- Process isolation
- Extensible mechanism for secure IPC
- The ability to remove unnecessary and potentially insecure parts of the kernel
- Prevents user A from reading user B’s files
- Ensures that user A doesn’t exhaust user B’s memory
- Ensures that user A doesn’t exhaust user B’s CPU resources
- Ensures that user A doesn’t exhaust user B’s devices (for example, telephony, GPS, and Bluetooth)
- SELinux on SDK 28
- seccomp
Java API Framework
-
A rich and extensible view system you can use to build an app’s UI, including lists, grids, text boxes, buttons, and even an embeddable web browser
一套丰富且可扩展的视图系统,可用于构建应用的用户界面(UI),包括列表、网格、文本框、按钮,甚至嵌入式网页浏览器。 -
A resource manager, providing access to non-code resources such as localized strings, graphics, and layout files
一个资源管理器,用于访问非代码资源,例如本地化字符串、图形和布局文件。 -
A notification manager that enables all apps to display custom alerts in the status bar
一个通知管理器,支持所有应用在状态栏中显示自定义提醒。 -
An activity manager that manages the lifecycle of apps and provides a common navigation back stack
一种活动管理器,用于管理应用的生命周期,并提供通用的返回导航栈 -
Content providers that enable apps to access data from other apps, such as the Contacts app, or to share their own data
内容提供程序,使应用能够访问其他应用(例如“联系人”应用)的数据,或共享自身数据