Download pdf - Smartphone security issues

Transcript
Page 1: Smartphone security issues

Smartphone security issues

NCA  Seminar,  Krushevo,  2013  Aleksandra  Gavrilovska  

What can you do?  

Page 2: Smartphone security issues

2  

Losing your smartphone

Page 3: Smartphone security issues

What can you do ?  

•  Lock  access  to  the  phone  with  PIN  or  password  

•  Backup  phone  data  in  the  cloud,  computer,  memory  card  

•  Find  My  iPhone  •  Where’s  my  Droid  

3  

Page 4: Smartphone security issues

4  

Malicious software

Page 5: Smartphone security issues

Malicious software

•  Easily  distributed  via  applicaKon  stores  without  security  mechanism  

•  Pirated  versions  of  legiKmate  apps  •  Fetch  apps  from  links  on  the  web  (“malverKzing”)  

•  Install  soSware  which  targets  communicaKon,  user  locaKon  or  other  personal  data  

•  SMS  trojan  and  premium  SMS  

5  

Page 6: Smartphone security issues

What can you do ?  

•  Avoid  changing  phone’s  factory  seVngs  •  Don’t  jailbreak  or  root  your  phone  •  Install  apps  only  from  trusted  sources  •  Read  app  reviews    •  Read  permissions  requested  by  applicaKon  before  installing  it  

•  Install  firmware  updates  provided  by  the  manufacturer    

6  

Page 7: Smartphone security issues

7  

Page 8: Smartphone security issues

Malicious QR codes

•  QR  code  usually  contain  web  link  •  Smartphone  browser  is  automaKcally  launched  

•  Install  malware  •  Link  to  phishing  site  •  Steal  informaKon  

8  

Page 9: Smartphone security issues

What can you do ?  

•  Use  app  that  has  built  in  securiKes  features  (Norton  Snap)  

•  Enable  QR  code  review  •  Check  if  it  is  sKcker  (in  real  life)  

9  

Page 10: Smartphone security issues

10  

Vulnerable wireless networks

Page 11: Smartphone security issues

What can you do ?  

•  Don’t  transmit  sensiKve  data  via  public  Wi-­‐Fi,  which  is  usually  unencrypted  

•  Send  sensiKve  data  to  sites  that  you  trust  •  Check  if  it  web  address  starts  with  haps  •  Use  secure,  encrypted  VPN  to  connect  to  corporate  network  

11  

Page 12: Smartphone security issues

12  

P A N I C

Page 13: Smartphone security issues

What can you do ?  

•  Use  Mobile  device  security  tools  – Mobile  device  management  – Sandboxing  – Secure  browsers  

13  

Page 14: Smartphone security issues

14  

…because we develop mobile applications…

Page 15: Smartphone security issues

OWASP Mobile Security Project

•  OWASP  FoundaKon  •  For  developers  and  security  teams  •  How  to  build  and  maintain  secure  mobile  apps  •  Primary  focus  on  applicaKon  layer  

15  

Page 16: Smartphone security issues

OWASP Mobile Security Project  

•  Top  Ten  Mobile  Risks  •  Mobile  security  tesKng  •  Mobile  cheat  sheet  series  •  Secure  mobile  development  •  Top  ten  mobile  controls  and  design  principles  

16  

Page 17: Smartphone security issues

17  

Thank you.  


Recommended

Unit 9 Modules 09 11 PE Issues Student · 2019-09-26 · Unit 9 Modules 09 – 11 PE Issues Student SOCIAL SECURITY ADMINISTRATION, Office of Human Resources, Office of Learning SSA
Unit 9 Modules 09 11 PE Issues Student · 2019-09-26 · Unit 9 Modules 09 – 11 PE Issues Student SOCIAL SECURITY ADMINISTRATION, Office of Human Resources, Office of Learning SSA Documents
IoT Governance: Privacy and Security ... - Internet of · PDF fileIoT Governance, Privacy and Security Issues ... 0.3 11/11/2013 All authors thNew Version after the meeting on
IoT Governance: Privacy and Security ... - Internet of · PDF fileIoT Governance, Privacy and Security Issues ... 0.3 11/11/2013 All authors thNew Version after the meeting on Documents
Security · 2020. 12. 17. · 2 Security Principles Network Security is a very very big issue, can not full covered in this course Aimed at security issues of single host KISS: Keep
Security · 2020. 12. 17. · 2 Security Principles Network Security is a very very big issue, can not full covered in this course Aimed at security issues of single host KISS: Keep Documents
Security Policies of Corporate Multiservice Network ... · hacking allows regulations and procedures to be created to address the security issues of a particular network system. The
Security Policies of Corporate Multiservice Network ... · hacking allows regulations and procedures to be created to address the security issues of a particular network system. The Documents
Smartphone Security Malware und Sicherheit für Android 1
Smartphone Security Malware und Sicherheit für Android 1 Documents
INFORMAZIONI SUL PRODOTTO G DATA INTERNET SECURITY PER ANDROID€¦ · PER SMARTPHONE O TABLET ANDROID™ G DATA INTERNET SECURITY PER ANDROID INFORMAZIONI SUL PRODOTTO Da oltre 30
INFORMAZIONI SUL PRODOTTO G DATA INTERNET SECURITY PER ANDROID€¦ · PER SMARTPHONE O TABLET ANDROID™ G DATA INTERNET SECURITY PER ANDROID INFORMAZIONI SUL PRODOTTO Da oltre 30 Documents
Laws, Investigations & Ethical Issues in Security CIM3562 Supplementary Information HKSAR Legal System 1
Laws, Investigations & Ethical Issues in Security CIM3562 Supplementary Information HKSAR Legal System 1 Documents
Kaspersky Endpoint Security 8 for Smartphone · Kaspersky Endpoint Security 8 for Smartphone dla systemu operacyjnego BlackBerry® Podr. ę. cznik u. ż. ytkownika. WERSJA PROGRAMU:
Kaspersky Endpoint Security 8 for Smartphone · Kaspersky Endpoint Security 8 for Smartphone dla systemu operacyjnego BlackBerry® Podr. ę. cznik u. ż. ytkownika. WERSJA PROGRAMU: Documents
Security Issues on BcNkrnet.or.kr/board/data/dprogram/1221/I1-2%B1%E8%C8%A3%BC... · 2012-03-20 · Security Issues on BcN (2007 KrNET) 6 3. ITU-T NGN 보안 NGN Security Requirements
Security Issues on BcNkrnet.or.kr/board/data/dprogram/1221/I1-2%B1%E8%C8%A3%BC... · 2012-03-20 · Security Issues on BcN (2007 KrNET) 6 3. ITU-T NGN 보안 NGN Security Requirements Documents
Smartphone Security
Smartphone Security Documents
APEC Oil and Gas Security Studies · the Oil and Gas Security Studies (OGSS). The OGSS serves as a useful publication to APEC economies by having access to developments and issues
APEC Oil and Gas Security Studies · the Oil and Gas Security Studies (OGSS). The OGSS serves as a useful publication to APEC economies by having access to developments and issues Documents
Security Issues in OpenStack Rostyslav Slipetskyy’s Maste’s thesis Submission date: June 2011 Presenter: 陳傑威
Security Issues in OpenStack Rostyslav Slipetskyy’s Maste’s thesis Submission date: June 2011 Presenter: 陳傑威 Documents
ccTLD security issues, attacks, сonfickermeeting2009.cctld.ru/presentations 08-09-2009/16-30-Crain-security-Bled... · ccTLD Capacity Building Initiative • Partnered with ccTLD
ccTLD security issues, attacks, сonfickermeeting2009.cctld.ru/presentations 08-09-2009/16-30-Crain-security-Bled... · ccTLD Capacity Building Initiative • Partnered with ccTLD Documents
Driving at 200 km/ into a wall of security issues in personal cloud?
Driving at 200 km/ into a wall of security issues in personal cloud? Technology
Smartphone Security - Schwachstellen von mobilen Geräten ...bischoff/smartphone_security/smartphone... · Andreas Bischoff: Smartphone Security - Schwachstellen von mobilen Geräten
Smartphone Security - Schwachstellen von mobilen Geräten ...bischoff/smartphone_security/smartphone... · Andreas Bischoff: Smartphone Security - Schwachstellen von mobilen Geräten Documents
Security Issues in Mobile WiMAX(IEEE 802.16e) Frank, A Ibikunle Covenant University, Electrical and Information Engineering Department, Ota. 2009 IEEE
Security Issues in Mobile WiMAX(IEEE 802.16e) Frank, A Ibikunle Covenant University, Electrical and Information Engineering Department, Ota. 2009 IEEE Documents
iOS Application (In)Security - index-of.co.ukindex-of.co.uk/SmartPhone/iOS Application (In)Security [nam_daehyeon].pdf · 위치톝으로써 버퍼 오버 플로우 (buffer overflows)에
iOS Application (In)Security - index-of.co.ukindex-of.co.uk/SmartPhone/iOS Application (In)Security [nam_daehyeon].pdf · 위치톝으로써 버퍼 오버 플로우 (buffer overflows)에 Documents
Security Making health manageable · Making health manageable. Ethical Issues in Health ... patient permission before releasing medical records to a ... Prohibit re-disclosure and
Security Making health manageable · Making health manageable. Ethical Issues in Health ... patient permission before releasing medical records to a ... Prohibit re-disclosure and Documents