Android applications run on their own Linux process and are assigned a unique user ID. By default, applications run inside a basic sandbox process with no permissions assigned, thus preventing such applications from accessing the system or resources. Android applications can request permissions, however, through the application's manifest file.