Presentation is loading. Please wait.

Presentation is loading. Please wait.

Security issues for mobile devices Cvetko Andreeski.

Published byEmma Gallagher Modified over 9 years ago

Similar presentations

Presentation on theme: "Security issues for mobile devices Cvetko Andreeski."— Presentation transcript:

1 Security issues for mobile devices Cvetko Andreeski

2 Content Facts about mobile devices and traffic Mobile networks and communication Mobile platforms security Mobile application security Steps to increase security of mobile devices

3 Facts about mobile devices and traffic Increasing number of mobile devices for individual and professional work Broadband mobile networks 2G, 3G, 4G (max speed 1Gb/s) Portability and adaptability Duration of unplugged work In 2012, the number of mobile-connected tablets increased to 36 million There were 161 million laptops on the mobile network in 2012 Source: Cisco VNI Mobile Forecast 2013 In 2016 we should expect purchase of 283 million tablet computers which should be more than purchased laptop computers in that year

4 Mobile communication Most of the mobile devices use 3G standard for communication Only 0.9% of connections are 4G in 2012, but they make 14% of the traffic Even the 3G standard implements KASUMI cipher there were several possibilities to corrupt the communication The latest example is the so called related key attack. By this attack, one can recover the full A5/3 key Basics of communication through 4G architecture is the Y-comm framework. This framework implements security in the architecture from the initial stages of the design process. This architecture should deliver dedicated bandwidth for the users, by switching between the networks of different providers, known as vertical handover

5 Mobile platforms security FeatureBlackberryiPhoneAndroid Remote wipe capability Encrypted backup files Mandatory code signing  Type safe programming  Application sandbox  Corporate policy enforcement  Full disk and memory encryption  End-to-end data encryption    ImplementedPartially implementedNot implemented Source: comScore, May 2013 Source: Ernst & Young, January 2012 Comparison of security features on different mobile platforms Third party applications can fill the gap of some security features.

6 Mobile application security Web based application – Android – Java, Android SDK, many reversing tools for Android applications, – Android applications are not reviewed before they are send for downloading – Android – certification and keys can be taken from one location /etc/security/cacerts.bks – Android – available tools for data decryption – IOS – every application is reviewed before it is presented on Apple store – IOS – enforces application sendboxing – IOS – jailbraking – IOS – possibility for reversing applications, tools for setting the hook – IOS – lot of resources (raw data from database) in cache files

7 Steps to increase security of mobile devices Know the risks and assets on mobile devices and communication Follow the policy for security of mobile devices Test the platform and applications Avoid or limit the transfer of sensitive data over the network Use of secure protocols for logging and sending sensitive data Sandboxing for untrusted (or all) applications Test the end to end communication and services

Download ppt "Security issues for mobile devices Cvetko Andreeski."

Similar presentations

!! Are we under attack !! Consumer devices continue to invade *Corporate enterprise – just wanting to plug in* Mobile Device Management.

!! Are we under attack !! Consumer devices continue to invade *Corporate enterprise – just wanting to plug in* Mobile Device Management.
Security for Mobile Devices

Security for Mobile Devices
Bring Your Own Device (BYOD) Security By Josh Bennett & Travis Miller.

Bring Your Own Device (BYOD) Security By Josh Bennett & Travis Miller.
1 Confidential Lessons Learned from the First Generation of Mobile Apps Sean Ginevan, Product Management MobileIron - Confidential1.

1 Confidential Lessons Learned from the First Generation of Mobile Apps Sean Ginevan, Product Management MobileIron - Confidential1.
What’s new in this release? September 6, 2012. Milestone Systems Confidential Milestone’s September release 2012 XProtect ® Web Client 1 Connect instantly.

What’s new in this release? September 6, Milestone Systems Confidential Milestone’s September release 2012 XProtect ® Web Client 1 Connect instantly.
Topic 8: Secure communication in mobile devices. Choice of secure communication protocols, leveraging SSL for remote authentication and using HTTPS for.

Topic 8: Secure communication in mobile devices. Choice of secure communication protocols, leveraging SSL for remote authentication and using HTTPS for.
Meraki Mobile Device Management

Meraki Mobile Device Management
Building and Deploying Safe and Secure Android Apps for Enterprise Presented by Technology Consulting Group at Endeavour Software Technologies.

Building and Deploying Safe and Secure Android Apps for Enterprise Presented by Technology Consulting Group at Endeavour Software Technologies.
Wireless Application Protocol and i-Mode By Sridevi Madduri Swetha Kucherlapati Sharrmila Jeyachandran.

Wireless Application Protocol and i-Mode By Sridevi Madduri Swetha Kucherlapati Sharrmila Jeyachandran.
Evidor: The Evidence Collector Software using for: Software for lawyers, law firms, corporate law and IT security departments, licensed investigators,

Evidor: The Evidence Collector Software using for: Software for lawyers, law firms, corporate law and IT security departments, licensed investigators,
Using Internet Information Server And Microsoft ® Internet Explorer To Implement Security On The Intranet HTTP.

Using Internet Information Server And Microsoft ® Internet Explorer To Implement Security On The Intranet HTTP.
IPhone Security: Understanding the KeyChain Nicholis Bufmack and Ryan Thomas CS 691 Summer 2009.

IPhone Security: Understanding the KeyChain Nicholis Bufmack and Ryan Thomas CS 691 Summer 2009.
Android An open handset alliance project Janice Garcia September 18, 2008 MIS 304.

Android An open handset alliance project Janice Garcia September 18, 2008 MIS 304.
IOS 8 for MDM/EMM Greg Elliott Shiv Chandra Kumar.

IOS 8 for MDM/EMM Greg Elliott Shiv Chandra Kumar.
Macintosh Configuration Management Will Jorgensen 1.

Macintosh Configuration Management Will Jorgensen 1.
01 Introduction to Java Technology. 2 Contents History of Java What is Java? Java Platforms Java Virtual Machine (JVM) Java Development Kit (JDK) Benefits.

01 Introduction to Java Technology. 2 Contents History of Java What is Java? Java Platforms Java Virtual Machine (JVM) Java Development Kit (JDK) Benefits.
Case study 2 Android – Mobile OS.

Case study 2 Android – Mobile OS.
Presented by Manager, MIS.  GRIDCo’s intentions for publishing an Acceptable Use Policy are not to impose restrictions that are contrary to GRIDCo’s.

Presented by Manager, MIS.  GRIDCo’s intentions for publishing an Acceptable Use Policy are not to impose restrictions that are contrary to GRIDCo’s.
Using RADIUS Within the Framework of the School Environment Ed Register Consultant April 6, 2011.

Using RADIUS Within the Framework of the School Environment Ed Register Consultant April 6, 2011.
Internet GIS. A vast network connecting computers throughout the world Computers on the Internet are physically connected Computers on the Internet use.

Internet GIS. A vast network connecting computers throughout the world Computers on the Internet are physically connected Computers on the Internet use.

Similar presentations

Ads by Google