Zarhus Developers Meetup #3

This presentation reviews Android's hardware-backed security architecture, focusing on low-level mechanisms that protect modern devices. We examine the Trusted Execution Environment (TEE) and its role in securing critical operations like biometric authentication and key management. The talk explores Android Verified Boot (AVB) and hardware root of trust requirements across the diverse Android ecosystem, including implementations from Google Pixel, and other major manufacturers. We discuss how file-based encryption leverages hardware secrets to protect user data at rest. Finally, we address Android's compliance requirements and how they ensure consistent security guarantees across different device manufacturers.