Advertisement
If you have a new account but are having problems posting or verifying your account, please email us on hello@boards.ie for help. Thanks :)
Hello all! Please ensure that you are posting a new thread or question in the appropriate forum. The Feedback forum is overwhelmed with questions that are having to be moved elsewhere. If you need help to verify your account contact hello@boards.ie
Hi there,
There is an issue with role permissions that is being worked on at the moment.
If you are having trouble with access or permissions on regional forums please post here to get access: https://www.boards.ie/discussion/2058365403/you-do-not-have-permission-for-that#latest

Can Phone security compromised via an App?

  • 30-04-2012 4:02pm
    #1
    Registered Users, Registered Users 2 Posts: 2,055 ✭✭✭


    When developing an App are there security considerations you need to take to ensure that a hacker (or other) can use your APP to breach the security on a phone that has downloaded it and perhaps get access to confidential data on the phone?


Comments

  • Closed Accounts Posts: 19,777 ✭✭✭✭The Corinthian


    Yes, principally in the transmission of that data to and from a server. This is why automatically connecting to open WiFi can be dangerous, as many apps do transmit sensitive data back to a home server and if not secured it can be sniffed out and harvested.

    As to a trojan on the phone accessing sensitive data, including from your app, that is a less common, but not unimportant issue. To begin with, it will be able to access phone data anyway - just as your app can. As to data from your app, both the iPhone and Android do place limits to how apps can read the persistent data of other apps, but there are ways around this - particularly if the phone is rooted/jail-broken.

    In short in both cases; encrypt, encrypt, encrypt.


  • Registered Users, Registered Users 2 Posts: 33 skateboardP


    This is a possibility on the android system as there is little to no validation of their apps, apple however goes through every app submission thoroughly and rejects any potential viruses/trojans etc


  • Closed Accounts Posts: 19,777 ✭✭✭✭The Corinthian


    This is a possibility on the android system as there is little to no validation of their apps, apple however goes through every app submission thoroughly and rejects any potential viruses/trojans etc
    Irrelevant and incorrect.

    The OP is asking about security considerations with regards to his/her own apps. A trojan will have access to phone data, but that has nothing to do with your own app security.

    The only case where a trojan is of concern to you, and your app, is if it can access your app's local data, which it cannot on either iOS or Android smartphones unless they are jailbroken/rooted.

    And as trojans exist for both systems also, despite Apple's more stringent submission process, one should apply the same security precautions regardless.


  • Registered Users, Registered Users 2 Posts: 33 skateboardP


    Well in terms of app security, more precautions need to be taken on android development as the iOS system is more secure


  • Closed Accounts Posts: 19,777 ✭✭✭✭The Corinthian


    Well in terms of app security, more precautions need to be taken on android development as the iOS system is more secure
    Really. What do you have to back that up?

    I ask, because so far all you've presented is that Apple has a more stringent submission process, which has absolutely nothing to do with iOS. Neither does it have anything to do with the security of your own app, which oddly enough is the topic of this thread.


  • Advertisement
  • Registered Users, Registered Users 2 Posts: 33 skateboardP


    Well in terms of app security, more precautions need to be taken on android development as the iOS system is more secure
    Really. What do you have to back that up?

    I ask, because so far all you've presented is that Apple has a more stringent submission process, which has absolutely nothing to do with iOS. Neither does it have anything to do with the security of your own app, which oddly enough is the topic of this thread.

    My own experience plus hundreds of articles on the web by experts in the area


  • Closed Accounts Posts: 19,777 ✭✭✭✭The Corinthian


    My own experience plus hundreds of articles on the web by experts in the area
    In other words you don't know what you're taking about. If you care to read, for example, this article it concludes that "after reviewing the security features of the Android and the iOS, we can conclude that there is no clear advantage of the one over the other."

    Ultimately iOS has one advantage, which has absolutely nothing to do with iOS itself - the submission process - and in reality both have pluses and minuses where it comes to the security of the operating system.

    Writing an app of iOS and thinking about writing one for Android does not make you terribly experienced, btw. Especially when you don't appear to understand what the OP's question was to begin with.


Advertisement