The security model of Windows Phone is designed to make sure that the user data present on the device is safe and secure. The following sections provide a brief explanation of the concepts on which Windows Phone security is built.
Windows Phone is heavily built on the principles of least privilege and isolation. This has been consistent since the inception of Windows Phone 7. To achieve this, Windows Phone introduced the concept of chambers. Each chamber has an isolation boundary where processes can run. Depending on the security policy of a specific chamber, a process running in this chamber has the privilege of accessing the OS's resources and capabilities (https://www.msec.be/mobcom/ws2013/presentations/david_hernie.pdf). There are four types of security chambers. The following is a brief description of each one of them:
- Trusted Computing Base (TCB): The processes here have unrestricted access to most Windows Phone resources. This chamber has privileges to modify...