Android Incorporation, founded by Andy Rubin, Rich Miner, Nick Sears and Chris White in 2003, was acquired by Google in 2005 [3]. Android Incorporation is based in Palo Alto, California. After the acquisition, it is operated as a subsidiary of Google and the founders (Andy Rubin, Rich Miner and Chris White) remain with the company.[59] Andy Rubin became the leader of the Android project at Google. The Open Handset Alliance (OHA), made up of chipmakers, phone makers (Samsung, Motorola, LG, etc.), software developers and service providers (T-Mobile), was created by Google in November 2007 [3], [60]. Rubin's team worked with OHA members to build a non-proprietary open standard platform [60]. As a result, the T-Mobile G1, the first Android phone, was released in October 2008.[3],[61]. T-Mobile G1 was based on Linux kernel version 2.6 [62]. The Android mascot is a small green robot, as shown in Figure 7 [3]. Android features include application framework, Dalvik virtual machine, integrated browser, optimized graphics, SQLite for structured data storage, multimedia support for audio, video and common still images. formats, GSM (Global System for Mobile Communications) telephony, Bluetooth, EDGE (Enhanced Data for GSM Evolution), 3G and WiFi, camera, GPS, compass and a rich development environment [54], [63]. Android is composed of a kernel based on the Linux kernel, with C language for middleware, libraries and APIs as well as application software that runs on an application framework that includes Java-compatible libraries based on Apache Harmony [63]. Users can download Android mobile applications from the online application store, Android Market development...... middle of paper ...... software attack [81], [82 ]. The fact that Android is more vulnerable to malware is because there is no process for reviewing the application before it is placed on the Android Market [83]. Additionally, there are other publishing channels besides the Android Market for downloading apps. The openness of Android Market indeed allows easy use by developers, but at the same time, it also provides a low entry barrier for malware developers. In order to deal with malware attacks, the recent Android 4.0 (Ice Cream Sandwich) is added with ASLR (Address Space Layout Randomization) by Google to provide better defense against memory corruption exploits [84]. ASLR is a computer security technique that randomly arranges the positions of key data areas, so that it is more difficult for attackers to know the exact memory location of key data areas. [85].