Android keymaster

http://www.amazon.com/Android-Security-Internals-In-Depth-Architecture/dp/1593275811
http://nelenkov.blogspot.tw/2012/07/jelly-bean-hardware-backed-credential.html
https://android.googlesource.com/platform/hardware/libhardware/+/master/tests/keymaster/keymaster_test.cpp

The keymaster module is meant to decouple Android from the actual device security hardware, and a typical implementation would use a vendor-provided library to communicate with the crypto-enabled hardware.