Sir, you said is Security testing.
There is a Security item in Settings which contains PIN and Phone lock.This is one test point for phone security tesing. E.g. input wrong pin code and phone lock code.
For Android system, you could use below methods to test:
1. Log on https:// security webpage
2. For 流量,you could use connection manager to have a basic test.
针对android的安全测试,目前阶段主要还是靠测试人员的技术功底为主,工具方面主要是一些辅助工具。 代码静态分析方面,HP的Fortify表现不错(价钱不便宜)
测试方法、开源工具方面可以参考下OWASP移动的相关项目(https://www.owasp.org/index.php/Mobile)