Android’s kernel-level app sandbox provides security by:
A.
assigning a unique user ID (UID) to each app and running in a separate process.
B.
running all apps under an unprivileged group ID (GID).
C.
restricting read access to an app’s package to the kernel process.
D.
preventing an app’s data files from being read by any running process.
Explanation: