Presentation is loading. Please wait.

Presentation is loading. Please wait.

Who owns your phone? Who feels that they have the right to use your phone for their purposes or on your behalf?

Published byAgnes Leonard Modified over 5 years ago

Similar presentations

Presentation on theme: "Who owns your phone? Who feels that they have the right to use your phone for their purposes or on your behalf?"— Presentation transcript:

1

2 Who owns your phone? Who feels that they have the right to use your phone for their purposes or on your behalf?

3 Your Phone Code Data OS Activity Micro-phone Battery Peripherals
Competitors Your Phone Code Data Application Authors Your Keeper OS Activity Phone Company Your Employer Camera Micro-phone Network Location Battery Law Enforcement Hardware Manufacture Peripherals Identity Mal OS Author

4 IOS Security Architecture
All apps must signed by Apple To reduce malicious code Quick erase of key store Prevents data access, permanently Backups use different keys Firmware non-readable key (UID) To prevent cloning

5 IOS Security Architecture
Signed Applications Data Library/Device Permissions File Keys Signed OS File Metadata Class Keys Effaceable Storage Boot Loader Phone UID Firmware Apple Root Certificate

6 Android Security Architecture
Linux file system permissions model All apps must be signed Apps run in their own user space “eXecute Never” markings Device resource permissions Confirmed on install Accept all or go away

7 BYOD Can one device make your kids happy and let IT security sleep nights? Being pushed by Apple With root, all security arrangements are subvertable (futile?) Several venders (e.g. Good) propose walled gardens

8 HTML5 Security OWASP Top Ten SSL Iframe sandbox
Cross Site Scripting (XSS) More opportunities in HTML5 Validate ALL input Make sure data is data and not executable! SSL Secured channel (privacy issues) Server authentication Post vs Get Iframe sandbox Hybrid mobile/web applications Server access to native phone features

9 References IOS Security Architecture Anroid Security Architecture
Anroid Security Architecture OWASP

10 Thank You Robert Klerer ListYourself.net inc.

Download ppt "Who owns your phone? Who feels that they have the right to use your phone for their purposes or on your behalf?"

Similar presentations

COMPUTERS: TOOLS FOR AN INFORMATION AGE Chapter 3 Operating Systems.

COMPUTERS: TOOLS FOR AN INFORMATION AGE Chapter 3 Operating Systems.
Innovation Towards a next generation secure internet Private Application Ecosystems Sanjay Deshpande CEO and Chief Innovation Officer Center.

Innovation Towards a next generation secure internet Private Application Ecosystems Sanjay Deshpande CEO and Chief Innovation Officer Center.
1 Confidential Lessons Learned from the First Generation of Mobile Apps Sean Ginevan, Product Management MobileIron - Confidential1.

1 Confidential Lessons Learned from the First Generation of Mobile Apps Sean Ginevan, Product Management MobileIron - Confidential1.
Mobile Application Development Keshav Bahadoor. Part 1 Cross Platform Web Applications.

Mobile Application Development Keshav Bahadoor. Part 1 Cross Platform Web Applications.
iOS & other Android devices KNOX EMM (Client) Cloud Service Active Directory integration (Optional) Mobile Device & App Management MDM IAM Samsung Device.

iOS & other Android devices KNOX EMM (Client) Cloud Service Active Directory integration (Optional) Mobile Device & App Management MDM IAM Samsung Device.
IOS VS ANDROID Presented by, Lowkya Pothineni.

IOS VS ANDROID Presented by, Lowkya Pothineni.
Information Networking Security and Assurance Lab National Chung Cheng University The Ten Most Critical Web Application Security Vulnerabilities Ryan J.W.

Information Networking Security and Assurance Lab National Chung Cheng University The Ten Most Critical Web Application Security Vulnerabilities Ryan J.W.
Information Networking Security and Assurance Lab National Chung Cheng University 1 Top Vulnerabilities in Web Applications (I) Unvalidated Input:  Information.

Information Networking Security and Assurance Lab National Chung Cheng University 1 Top Vulnerabilities in Web Applications (I) Unvalidated Input:  Information.
Introduction to the OWASP Top 10. Cross Site Scripting (XSS)  Comes in several flavors:  Stored  Reflective  DOM-Based.

Introduction to the OWASP Top 10. Cross Site Scripting (XSS)  Comes in several flavors:  Stored  Reflective  DOM-Based.
An Introduction to Operating Systems. Definition  An Operating System, or OS, is low-level software that enables a user and higher-level application.

An Introduction to Operating Systems. Definition  An Operating System, or OS, is low-level software that enables a user and higher-level application.
Case study 2 Android – Mobile OS.

Case study 2 Android – Mobile OS.
IOS & Android Security, Hacking and Tweaking Workshop D.Papamartzivanos University Of the Aegean – Info Sec Lab Android Security – Cydia Substrate Dimitris.

IOS & Android Security, Hacking and Tweaking Workshop D.Papamartzivanos University Of the Aegean – Info Sec Lab Android Security – Cydia Substrate Dimitris.
CS 153 Design of Operating Systems Spring 2015 Lecture 24: Android OS.

CS 153 Design of Operating Systems Spring 2015 Lecture 24: Android OS.
OWASP Mobile Top 10 Why They Matter and What We Can Do

OWASP Mobile Top 10 Why They Matter and What We Can Do
Presentation By Deepak Katta

Presentation By Deepak Katta
Lesson 8 Operating Systems

Lesson 8 Operating Systems
 Security and Smartphones By Parker Moore. The Smartphone Takeover  Half of mobile phone subscribers in the United States have a smartphone.  An estimated.

 Security and Smartphones By Parker Moore. The Smartphone Takeover  Half of mobile phone subscribers in the United States have a smartphone.  An estimated.
All Your Droid Are Belong To Us: A Survey of Current Android Attacks 단국대학교 컴퓨터 보안 및 OS 연구실 김낙영 2015. 04. 21.

All Your Droid Are Belong To Us: A Survey of Current Android Attacks 단국대학교 컴퓨터 보안 및 OS 연구실 김낙영
Operating Systems  By the end of this session, you will know: What an Operating System is. The functions it performs.

Operating Systems  By the end of this session, you will know: What an Operating System is. The functions it performs.
© 2010 Cisco and/or its affiliates. All rights reserved. 1 Web Security Fear, Surprise, and Ruthless Efficiency Mary Ellen Zurko.

© 2010 Cisco and/or its affiliates. All rights reserved. 1 Web Security Fear, Surprise, and Ruthless Efficiency Mary Ellen Zurko.

Similar presentations

Ads by Google