Threats & Vulnerabilities of Mobile Devices

As mobile devices, such as smartphones and tablets, and online availability become more common, there is also a clear concern about the level of security provided to these devices. Considering the rapid increase in policies such as BYOD (Bring Your Own Device) used in various organizations, this can be regarded as becoming increasingly important. There is the advantage of flexibility.

According to GAO, "Mobile devices face a range of threats that exploit many vulnerabilities commonly found in such devices, these vulnerabilities may be the result of poor technical control In addition, the relevant federal agencies will take steps to strengthen the security of mobile devices, such as providing specific controls, so that they can use and publish information on consumer recommended mobile security practices exactly as they wish We are consistently being implemented in mobile devices It is unknown whether consumers are aware of the importance of implementing security controls on their devices and adopting the recommended method. "

Perhaps the biggest disadvantage of allowing personal smartphones and mobile devices in the workplace is that they increase the company's vulnerability to external security threats. Each device represents a new portal for hackers to access basic corporate files, servers, and programs. In times when Cyber ​​Security is the biggest concern for the IT department, smartphones are often considered irresponsible. Most people do not take the initiative to properly protect their equipment and / or do not want the employer to access their property to introduce security measures.

Mobile devices such as smartphones and tablets need to support multiple security objectives: confidentiality, integrity, and availability. To achieve these goals, you need to make sure that mobile devices are protected from various threats. The purpose of this document is to help organizations centralize the security of mobile devices. Laptops are outside the scope of this publication. As with basic mobile phones, mobile devices with minimal computing power are also similar. This publication provides advice on the selection, implementation and use of centralized management techniques, explains security issues specific to the use of mobile devices, provides recommendations for protecting mobile devices throughout the lifecycle I will. The scope of this publication includes protection organizations that provide mobile devices and personally own (including their devices, BYOD) mobile devices.