Best security practices for android, blackberry, and iOS

Oh, Tae Hwan; Stackpole, Bill; Cummins, Emily; González, Carlos Villarroel; Ramachandran, Rahul; Lim, Shinyoung

doi:10.1109/etsiot.2012.6311252

Cited by 19 publications

(4 citation statements)

References 1 publication

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Quite a few guidelines and suggestions have already been prepared for somehow improving the situation in the field. Here is a list of the typical, but still insufficient suggestions identified for Android BYOD users [23]: a) Set a device password (Settings / Location & Security / Set up screen lock), b) Disable Unknown Source to install apps from (Settings / Applications / Unknown sources), c) Install Anti-Virus protection, d) Review application permissions, e) Check for system updates, f) Turn off wireless features (GPS, Bluetooth, Wi-Fi and Portable Hotspot) when not in use, g) Do not Root the device, h) Be aware of Web Security, i) Back-up data on the device, j) Turn off Google location. Despite all these good suggestions, they are not enough to rescue a situation and serve as myths about adequate security.…”

Section: B Byod Threats With Android or How A Mobile Affects Enterpri...mentioning

confidence: 99%

The Myths of and Solutions for Android OS Controlled and Secure Environment

Gorbāns

Kulesovs

Straujums

et al. 2015

ETR

View full text Add to dashboard Cite

Android is the most popular mobile operating system nowadays both for smartphones and tablets. This fact creates many not fully recognized risks. Often even advanced users naive think that using antivirus software, firewall, encryption, updates, as well as avoiding potentially risky sites and applications are enough for security. This list is not full, but nevertheless each its item in most cases only conceals an illusion of reaching the security. Authors have summarized and pointed out several actual Android security issues and have proposed a number of possible solutions.The practical experience as well as direct testing show that part of Android applications may contain a malware. The harmful characteristics of an application often become visible only after some runs, or after an update, or after a harmful web content is downloaded and shown by the application. It is observed that applications often try to get an unauthorized or inattentively authorized access to user data and send it outside the device. The situation with Android applications gets more and more out of the control. The authors propose a solution to overcome the security issues, while respecting the latest Google solutions. Target group of the proposal are users that use smartphone or tablet both for private and corporate needs, i.e. Bring Your Own Device (BYOD) case.The authors point out and compare four possible Android technical administration solutions based on the unified model for BYOD case. The authors also propose the changes to Android architecture to enhance its security. It is proposed to look at the mobile operating system as a web server. Such principle allows implementing in Android a number of security principles taken from the web servers solutions.

show abstract

Section: B Byod Threats With Android or How A Mobile Affects Enterpri...mentioning

confidence: 99%

The Myths of and Solutions for Android OS Controlled and Secure Environment

Gorbāns

Kulesovs

Straujums

et al. 2015

ETR

View full text Add to dashboard Cite

show abstract

“…We have, however, chosen not to implement this technique, as we believe it to be sub-optimal, in that it requires users to accept and install packages from outwith the Play Store, which contradicts standard accepted best-practice for security. [17] Our proposal does require that application developers elect to use this technique when developing their application, which may prove a barrier towards adoption, although likely a much smaller barrier than that experienced with techniques which require users to install a full custom operating system on their mobile device. Especially when considering the integration between Android devices and automobiles through the Android Auto scheme, we believe it is highly desireable for users to have the ability to have control over permissions in an out-ofthe-box scenario.…”

Section: Evaluation Of Proposalmentioning

confidence: 99%

Achieving Optional Android Permissions without Operating System Modifications

Paul

Irvine

2015

2015 IEEE 81st Vehicular Technology Conference (VTC Spring)

View full text Add to dashboard Cite

Since the release of the open-source Android operating system in 2009, considerable research has been carried out into various factors affecting the security and privacy of user data. As these devices become more widespread in usage, such as in vehicles with the announcement of Android Auto, the need for users to have control over the data available to applications is becoming important. A recurring theme from other works into this topic is that a more granular permissions model for Android applications would be beneficial, allowing users to understand which permissions their apps actually need, and to make decisions, rather than be forced to accept all of the requested permissions. A number of effective solutions have been presented, but these have required modifications be made to the core operating system, to enforce the existence of these new, optional permissions. We present an approach which permits an application developer to add optional permissions to their application, without any modifications being made to the underlying operating system. By not requiring rooting or other modifications to the device, this technique makes use of native Android functionality, and thus should remain operative between Android versions (which are increasingly difficult to gain root access on), unlike alternative techniques.

show abstract

“…Android OS smartphones are widely used, making them a potential target for malware attacks. Another reason Android OS is vulnerable is because it is open-source [5,6]. In 2022, 196,476 banking Trojans and 10,543 ransomware Trojans were anticipated to have been identified, according to the Kaspersky research [7].…”

Section: Introductionmentioning

confidence: 99%

Enhanced Malware Detection for Mobile Operating Systems Using Machine Learning and Dynamic Analysis

Aledam,

Al-Latteef

2024

IJSSE

View full text Add to dashboard Cite

Mobile smartphone operating systems have garnered widespread popularity due to their open-source nature and high performance. However, the convenience of these systems has also led to a rise in malware distribution. Traditional signature-based detection methods often fail to identify unknown threats, prompting the need for more effective solutions. In this study, we propose an advanced machine learning-based model for detecting malware on smartphones. Our model leverages dynamic and static analysis techniques to select and infer features, followed by a novel feature extraction method using sampling and Principal Component Analysis (PCA) to reduce dimensionality without adversely impacting the accuracy. Experimental results demonstrate the effectiveness of our approach in significantly enhancing malware detection accuracy and efficiency on smartphone operating systems. By analyzing the dynamic behavior of applications and incorporating innovative detection methods, our research contributes to a more robust and proactive approach to smartphone security. Through rigorous evaluation using real-world and synthetic datasets, we validate the efficacy of our model in accurately identifying malware instances and guiding users towards safe application downloads. Overall, our study provides a promising avenue for mitigating the escalating threat of malware on mobile devices.

show abstract

Best security practices for android, blackberry, and iOS

Cited by 19 publications

References 1 publication

The Myths of and Solutions for Android OS Controlled and Secure Environment

The Myths of and Solutions for Android OS Controlled and Secure Environment

Achieving Optional Android Permissions without Operating System Modifications

Enhanced Malware Detection for Mobile Operating Systems Using Machine Learning and Dynamic Analysis

Contact Info

Product

Resources

About