InfoQ Homepage Mobile Security Content on InfoQ
-
Apple Publicly Rejects Backdoored iPhone OS
Apple has publicly berated the US Government for overreach of their duties in the case of providing assistance in unlocking a suspect's mobile phone, in a trial that is polarising the technology nation. InfoQ summarises the situation and what the possible outcomes might be.
-
Android 'Stagefright' Vulnerabilty puts Millions at Risk
Google has moved quickly to reassure Android users following the announcement of a number of serious vulnerabilities. The Stagefright Media Playback Engine Multiple Remote Code Execution Vulnerabilities allow an attacker to send a media file over a MMS message targeting the device's media playback engine, responsible for processing several popular media formats.
-
Mobile Security and Team Collaboration: How to Combine It
Mobile devices often contain both personal and corporate data. When these devices use cloud services with an "always on" internet connection the risk of security breaches increases says Jeff Crume. An interview on mobile security threats, increasing adherence to security policies, using mobile devices to collaborate efficiently, effectively and secure, and deploying enterprise mobile security.
-
DidFail: a Free Android Tool to Detect Information Leakage
CERT Secure Coding team have recently released a freely available tool capable of analysing the leakage of sensitive information from an Android app. CERT researchers claim their tool "is the most precise taint-flow static analysis tool for Android apps."
-
To Have and Have Not StackMob- Part 2 of 2: The Road Ahead for Mobile Backend Services
The step-by-step app creation tools provided by backend services such as StackMob enable developers to create mobile apps that they would not otherwise be technically proficient enough to produce. With Stackmob gone, app developers may be searching for a replacement.Here's a look at some of the remaining options for those and other developers looking to find a mobile backend service provider.
-
Secure Coding for the Android Platform
CERT Secure Coding team, part of the Software Engineering Institute at Carnegie Mellon University, have recently released secure coding guidelines specific to Java's application in the Android platform. InfoQ interviews Lori Flynn, one of the researchers who authored them.
-
To Have and Have Not StackMob- Part 1 of 2: MBaaS Provider's Customers get Short End of Backend
On Sunday May 11, 2014 mobile backend as a service (MBaaS) vendor StackMob will cease operations. PayPal dictated its closure after eBay's online payment system acquired the company at the close of 2013.
-
A Few Highlights from QConSF2013- Part 2 of 2
It's one thing having an in-house training program. But there is a certain deeper insight that can be gained from attending a Q-Con conference in person. Which may be one reason why attendance at the globe-hopping event continues to grow.
-
Android 4.4 KitKat and the Secret Key Factory
With the introduction of Android 4.4, developers are being asked to change the way symmetric keys are generated from Unicode passphrases via the SecretKeyFactory.
-
AnyPresence Soups-up Enterprise MBaaS Platform:Part 2 of 2
There is so much to learn about the latest Mobile Backend as a Service provider AnyPresence's 5.0 platform geared for the enterprise that this second post was needed. Co-founder Rich Mendis provides further insight for InfoQ readers…
-
AnyPresence Soups up Enterprise MBaaS Platform- Part 1 of 2
Mobile Backend as a Service provider AnyPresence continues to hone their chops. Launching the fifth update to their self-titled platform geared for the enterprise. Co-founder Rich Mendis provides some insights for InfoQ readers…
-
InfoQ's Interview with Trevor Eckhart- “Discoverer” of Carrier IQ Root Kit
Trevor Eckhart became a household name when his video demonstrating Carrier IQ software in action and the questions that it engendered went viral. Culminating in the Department of Homeland Security’s recent recommendation to government employees to ensure that their mobile devices are Carrier IQ-free. InfoQ caught up with Mr. Eckhart for an update on this perceived threat to mobile privacy.
-
Department of Homeland Security Weighs in on Threats to Mobile Devices
Especially branded as malicious in the unclassified document is an application known as Carrier IQ. The DHS specifically advises the various branches of the government to install a mobile app dedicated to removing the perceived security threat posed by any instance of Carrier IQ existing on their device.
-
Ti.Next-What’s It All About Appcelerator?- Part 2 of 2
In his recent post, ‘Thoughts on Ti.Next’ for the Appcelerator web site, CEO Jeff Haynie talked about the reasons that the popular MBaaS provider is busy revamping Titanium, their signature SDK.
-
Tune Up Your Online Privacy with Clef
Clef is like a retina scan for your smart phone, which gives a whole new meaning to Retina Display. You can use Clef as an Open ID to log in from your smart phone only once to access many different web sites when online. Rather than typing in your user ID and password for each web site.