Support security logging on org-owned managed profile devices
When security logging is enabled on org-owned profile devices, Security events will be redacted to preserve privacy on the personal profile as follows: * TAG_ADB_SHELL_CMD Shell command will be redacted. * TAG_MEDIA_MOUNT * TAG_MEDIA_UNMOUNT The media's volume name will be redacted. * TAG_APP_PROCESS_START * TAG_CERT_AUTHORITY_INSTALLED * TAG_CERT_AUTHORITY_REMOVED * TAG_KEY_GENERATED * TAG_KEY_IMPORT * TAG_KEY_DESTRUCTION * TAG_KEY_INTEGRITY_VIOLATION Only events happening inside the managed profile will be returned to the admin. Bug: 148437300 Test: atest FrameworksServicesTests:DevicePolicyManagerTest Test: atest FrameworksServicesTests:SecurityEventTest Test: atest FrameworksCoreTests:EventLogTest Test: atest com.android.cts.devicepolicy.MixedDeviceOwnerTest#testSecurityLoggingWithSingleUser Test: atest com.android.cts.devicepolicy.MixedDeviceOwnerTest#testSecurityLoggingWithTwoUsers Test: atest com.android.cts.devicepolicy.MixedDeviceOwnerTest#testSecurityLoggingEnabledLogged Test: atest com.android.cts.devicepolicy.OrgOwnedProfileOwnerTest#testSecurityLogging Change-Id: I2e52229a3163b3e0dc3d80d71700023394d84587
Loading
Please register or sign in to comment