Study into the Implications of Smartphone Operating System Security

Recommendations

Info

Study into the implications of Smartphone operating system security Windows Phone Windows Phone is a relatively new Smartphone operating system but there have been versions of Microsoft, Windows CE and Windows Mobile, running on Smartphone since 2000. In the early days of Smartphone adoption, Windows Mobile and Symbian were two of the most popular Smartphone operating systems. As such, these platforms were frequently attacked and vulnerabilities were exposed. Some of these vulnerabilities led to the development of early mobile malware that took advantage of these exploits. Goode Intelligence discovered just seven CVE entries whilst performing a search on ‘Windows Phone’ on the CVE vulnerability database, ranging from 2007 until 2012. The latest CVE entry (CVE-2012-2993) was added on 30 May 2012 and was related to a Windows Phone 7 vulnerability in the way that it verifies the domain name in an X.509 digital certificate that could lead to man-in-the-middle attacks. As the latest version of Windows Phone, version 8, share parts of the core software components with the desktop version there could be situations where vulnerabilities discovered on the desktop version could be applicable to the phone version. Windows Phone Mobile Malware Windows Smartphones have had examples of malware written for them over the years. As Windows Smartphones were one of the most popular device pre-iOS and Android then they were targeted. There is little evidence of malware being written in any great numbers for the Windows Phone platform. There have been examples of malware proof-of-concepts 92 for Windows Phone 8 but no real examples of malware in the wild infecting Windows Phone 8 owners. This may be a testament to the strength of the Windows Phone security mechanisms or, more realistically, due to the relatively small numbers of Windows Phone users. As Windows Smartphones have lost market share then the percentage of malware that is explicitly targeting this operating system has also fallen with only a handful of specific Windows Phone 7 and 8 examples being detected. This situation may change if Windows Phone market share grows. 92 16 year old builds Windows Phone 8 malware prototype. Article from www.geek.com: http://www.geek.com/articles/mobile/16-year-old-builds-windows-phone-8-malware-prototype- 20121114/ Goode Intelligence © 2013 P a g e | 91 www.goodeintelligence.com
Study into the implications of Smartphone operating system security 5. CURRENT CONSUMER PROTECTION PRACTICES IN THE UK Overview Smartphone security is an emerging area of technology, as are the threats against them. Consumer protection practices in the UK are currently a combination of technology initiatives and consumer awareness. This section will exclude policy and regulatory control as this is covered in the section entitled “Current UK Smartphone security regulatory and institutional responsibilities”. Technology initiatives Technology initiatives to protect UK consumer Smartphones are a combination of endpoint (Apps installed on the Smartphone) and network-based controls (mainly technology controls deployed by the MNO). Endpoint Technology Endpoint technology that protects Smartphones from threats and vulnerabilities are usually termed mobile security apps and are usually developed by security vendors that have traditionally been active in protecting desktop computers against threats. These threats include viruses and malware, unauthorised access to devices and data and data leakage. Security vendors that have consumer products in this space include: AVG AVAST Bitdefender BullGuard ESET F-Secure Lookout Mobile Security Kaspersky Labs McAfee NQ Mobile Panda Symantec (Norton brand) Trend Micro TrustGo Please note that this is not an exhaustive list. This is a very competitive market and as such there are many vendors operating in the mobile security sector. Goode Intelligence © 2013 P a g e | 92 www.goodeintelligence.com
Page 1 and 2:
www.goodeintelligence.com £ Study
Page 3 and 4:
Study into the implications of Smar
Page 5 and 6:
Page 7 and 8:
Page 9 and 10:
Page 11 and 12:
Page 13 and 14:
Page 15 and 16:
Page 17 and 18:
Page 19 and 20:
Page 21 and 22:
Page 23 and 24:
Page 25 and 26:
Page 27 and 28:
Page 29 and 30:
Page 31 and 32:
Page 33 and 34:
Page 35 and 36:
Page 37 and 38:
Page 39 and 40:
Page 41 and 42: Study into the implications of Smar
Page 91: Study into the implications of Smar
show all

Study into the Implications of Smartphone Operating System Security

Create successful ePaper yourself

Delete template?

Save as template?