Mobile Security - Dutch Mobile .Net Developers

DUTCH MOBILE .NET DEVELOPERS

XAMARIN REVOLVE16

Agenda• OWASP Mobile Security Threats• Enterprise Mobility Suite (Intune)• Intune SDK

• OWASP Mobile Security Threats

The Open Web Application Security Project• OWASP Top 10

https://www.owasp.org/index.php/Category:OWASP_Top_Ten_Project

• OWASP Top 10 for Mobile 2014https://www.owasp.org/index.php/Projects/OWASP_Mobile_Security_Project_-_Top_Ten_Mobile_Risks

• OWASP Top 10 for Mobile 2016 RChttps://www.owasp.org/index.php/OWASP_Mobile_Security_Project

OWASP Top 10 for Mobile 2016 RC• M1 – Improper Platform Usage• M2 – Insecure Data Storage• M3 – Insecure Communication• M4 – Insecure Authentication• M5 – Insufficient Cryptography• M6 – Insecure Authorization• M7 – Client Code Quality• M8 – Code Tampering• M9 – Reverse Engineering• M10 – Extraneous Functionality

M1 – Improper Platform Usage

M2 – Insecure Data Storage

M3 – Insecure Communication

M4 – Insecure Authentication

M5 – Insufficient Cryptography

M6 – Insecure Authorization

M7 – Client Code QualityM8 – Code Tampering

M9 – Reverse Engineering

M10 – Extraneous Functionality

Mobile Security Threats Percentages

• Enterprise Mobility Suite

Enterprise Mobility Vision

Microsoft IntuneMain possibilities:

• Mobile Device Management (MDM)

• Mobile Application Management (MAM)

• Mobile Application Security

Intune in Microsoft App Development stack

Common scenario’s• Securing your on-premises email and collaboration infrastructure so that it can

be accessed by mobile devices and apps on the Internet

• Enabling your organization to issue hardware to its employees

• Enabling your organization to implement a secure “Bring Your Own Device (BYOD)” or personal device strategy

Demo• Add user

• Enable device management

• Create a policy

• Intune SDK

Intune SDK Possibilities• Manage different app parts with Microsoft Intune

• Available for iOS, Android, Xamarin (Forms) & Cordova

• Easy to integrate in a existing app

• When activated protect corporate data

How it works• The SDK is in the app.

• Intune sends policies to the app.

• Based on these policies the SDK might change the behavior.

• The SDK will do nothing if the device or app is not managed.

Control users’ ability to move documents

Configure clipboard restrictions

Configure screen capture restrictions

Enforce encryption on saved data

Remotely wipe corporate data

Enforce the use of a managed browser

Enforce a PIN policy

Require users to enter credentials

Check device health and compliance

Different Management configurationsSDK can work with:

• Mobile Device Management (MDM)

• Devices without MDM (MAM)

Demo• Enable the Intune SDK in iOS

Where to go from hereXamarin Evolve Sessions:• Addressing the OWASP Mobile Security Threats Using Xamarin

https://evolve.xamarin.com/session/56e1ff1efd00c0253cae339e• Enterprise Mobility: Keep It Safe

https://evolve.xamarin.com/session/56ec8771790aae283cca279e• Think Like a Hacker!

https://evolve.xamarin.com/session/56ec3cd4de91c6253c277bc0

Trial accounts:• Getting started with Enterprise Mobility Suite

https://www.microsoft.com/en-us/server-cloud/enterprise-mobility/ems-trial.aspx• Start with Microsoft Intune

https://www.microsoft.com/en-us/server-cloud/products/microsoft-intune/default.aspx• Azure Active Directory federation compatibility list

https://msdn.microsoft.com/en-us/library/azure/jj679342.aspx

Questions?

ENGINEER YOUR FUTURE TODAY

www.macaw.nl