Visitors Now:
Total Visits:
Total Stories:
Profile image
By Mobile Marketing and Technology (Reporter)
Contributor profile | More stories
Story Views

Now:
Last Hour:
Last 24 Hours:
Total:

Five Top Mobile Security Practices

Friday, January 25, 2013 17:22
% of readers think this story is Fact. Add your two cents.

(Before It's News)

Mobile app developers typically have no security training, whereas criminals attempting to hack into mobile devices are well-finance and highly motivated,  Andrew Hoog, chief investigative officer of Oak Park, Ill.-based. viaForensics, told  Mobile Marketing & Technology today.

Hoog will be a member of the security panel for the Mobile Marketing & Technology Spring 2013 Mobile Payments Conference, April 10-11 at the Helen Mills Event Space and Theater in New York City.

“We found through the many assessment that we do that security is challenging because mobile marketing and mobile payments is so new,” Hoog added. “Developers are more concerned on features and on building market share.”

There are several common security mistakes made by developers and hackers continue to improve their methods of attack, yet good security can be built into mobile apps, according to Hoog, who recommends a list of 42 best practices. The first five he lists are:

  • Avoid storing sensitive data on the device: Any stored data, even if encrypted could be compromised.
  • Avoid caching data on the device: Data can be captured in a variety of artifacts, including log/debug files, cookies, Web history, Web cache, property lists, files and SQLite databases.
  • Avoid use of query string for sensitive data: Query string parameters are more visible and can be unexpectedly cached.
  • Avoid crash logs: If the app crashes, the resulting log can provide valuable information to the attacker.
  • Fully validate SSL/TLS: Many apps don’t do this, which leaves them susceptible to man-in-middle attacks.
Share this:


Share this page via Email


Share this page via Stumble Upon


Share this page via Digg this


Share this page via Facebook


Share this page via Twitter


Source:

Report abuse

Comments

Your Comments
Question   Razz  Sad   Evil  Exclaim  Smile  Redface  Biggrin  Surprised  Eek   Confused   Cool  LOL   Mad   Twisted  Rolleyes   Wink  Idea  Arrow  Neutral  Cry   Mr. Green

Top Stories
Recent Stories

Register

Newsletter

Email this story
Email this story

If you really want to ban this commenter, please write down the reason:

If you really want to disable all recommended stories, click on OK button. After that, you will be redirect to your options page.