Innovate 2012: How secure are your mobile apps?
Bryan Casey 270003BSJV BFCASEY@US.IBM.COM | | Tags:  vulnerability ibm application mobile scanning security
0 Comments | 7,437 Visits
Today's post is from Vijay Dheap, Product Manager- IBM Mobile Security Solutions.
I just read Carmit's blog on the Application Security track at the Rational Innovate conference (June 3-7). I took her advice and reviewed the sessions running in the track. Overall I was very impressed with the content in the track, especially with regard to mobile application security. The mobile security threat vector is growing rapidly, so I am always on the lookout for new and relevant information on mobile security threats and how to secure against them. I was encouraged to see that there were a couple of sessions covering Mobile application security at Innovate. If you are planning on attending the conference, consider attending one or both of these two sessions.
The first sessions is entitled "Security for Mobile Applications" and will show how IBM Security AppScan provides several tools that developers can use to identify security problems in their code. The methods discussed include scanning the server code responsible for sending and receiving data from the mobile application, as well as scanning the code that runs natively on the smart phone. The session will cover security problems in mobile applications and how to use AppScan to detect them.
Another session is called "The New Frontier - Securing Mobile Apps" and will discuss the risks application developers should be concerned about, the new vulnerabilities they must test for, and how to identify them effectively. The presentation we also discuss how new IBM technologies can help.
While it's my job to focus on mobile security, mobile security is top of mind for many security leaders as well. A recent IBM Center for Applied Insights study of CIOs shows that more than half consider mobile security to be their greatest short-term technology concern - and rightfully so. According to the IBM X-Force 2011 Trend and Risk report, there is increasing interest in mobile vulnerabilities. Mobile security vulnerabilities continue to rise as enterprise users bring smartphones and tablets into the work place and unknowingly putting their work environment at risk. Companies are also concerned about the mobile applications they build: Are they secure? Are they putting their customers information at risk?
If you're building mobile applications for your customers or employees, there is no doubt mobile apps are mainstream and are fast becoming the primary interaction model. With this in mind, make sure you don't overlook building a secure application in your efforts to meet the market demands and reap the business value of mobile applications.