User Account

All Pages

Describe device-specific features used by the application

Assignment Help Computer Engineering
Reference no: EM133503389

Question 1:Describe Your Mobile Application Architecture

a) Describe device-specific features used by the application, wireless transmission protocols, data transmission media, interaction with hardware components, and other applications.
b) Identify the needs and requirements for application security, computing security, and device management and security.
c) Describe the operational environment and use cases.
d) Identify the operating system security and enclave/computing environment security concerns, if there are any.
Include an overview of topics such as mobile platform security, mobile protocols and security, mobile security vulnerabilities, and related technologies and their security, in your report.
Include the Mobile Application considerations that are relevant to your mobile application.
What is the design of the architecture (network infrastructure, web services, trust boundaries, third-party APIs, etc.)?
What are the common hardware components?
What are the authentication specifics?
What should or shouldn't the app do?

Question 2: Define the Requirements for Your Mobile Application

  • What is the business function of the app?
  • What data does the application store/process (provide data flow diagram)?
  • The diagram outlines network, device file system, and application data flows
  • How are data transmitted between third-party APIs and app(s)?
  • Will there be remote access and connectivity? Read this resource about mobile VPN security, and include any of these security issues in your report.
  • Are there different data-handling requirements between different mobile platforms? (iOS/Android/Blackberry/Windows/J2ME)
  • Does the app use cloud storage APIs (e.g., Dropbox, Google Drive, iCloud, Lookout) for device data backups
  • Is there specific business logic built into the app to process data?
  • What does the data give you (or an attacker) access to? Think about data at rest and data in motion as they relate to your app.
  • Do stored credentials provide authentication?
  • Do stored keys allow attackers to break crypto functions (data integrity)?
  • Are third-party data being stored and/or transmitted?
  • What are the privacy requirements of user data? Consider, for example, a unique device identifier (UDID) or geolocation being transmitted to a third party.
  • Are there user privacy-specific regulatory requirements to meet?
  • How do other data on the device affect the app? Consider, for example, authentication credentials shared between apps.
  • Compare between jailbroken (i.e., a device with hacked or bypassed digital rights software) and non-jailbroken devices.
  • How do the differences affect app data? This can also relate to threat agent identification.

Question 3: Identify Threats and Threat Agents

Identify possible threats to the mobile application and Threat agents
Outline the process for defining what threats apply to your mobile application
Does personal data intermingle with corporate data?

Question 4: Identify Methods of Attack

Provide senior management an understanding of the possible methods of attack of your app.

Question 5:Controls

  • What are the controls to prevent an attack? Conduct independent research, then define these controls by platform (e.g., Apple iOS, Android, Windows Mobile, BlackBerry).
  • What are the controls to detect an attack? Define these controls by platform.
  • What are the controls to mitigate/minimize impact of an attack? Define these controls by platform.
  • What are the privacy controls (i.e., controls to protect users' private information)? An example of this would be a security prompt for users to access an address book or geolocation.

 

Reference no: EM133503389

Questions Cloud

Describe how media stories can distort the frequency : Describe how media stories can distort the frequency and severity of crime based on the race or ethnicity of either the victim or perpetrator.
Discuss the kansas city gun experiment : discuss the Kansas City gun experiment. More specifically, what type of research design was employed, and what were the major findings of the project?
Why bail policies have been found to be discriminatory : Discuss why bail policies have been found to be discriminatory in some situations.
Describe mission of the organization and the business need : Choose a fictional or actual organization. Describe the mission of the organization and the business need to move to a cloud environment.
Describe device-specific features used by the application : Describe device-specific features used by the application, wireless transmission protocols, data transmission media, interaction with hardware components
Health care issue impacts activity : In your Health Care Issue Impacts activity, you investigated where health care issues can have an impact on a provider type.
Increase across most caribbean islands : According to a recently published IMF report, crime seems to be on the increase across most Caribbean islands.
Describe the fundamental concepts of the cybersecurity : Describe the fundamental concepts of the cybersecurity discipline and use them to provide system security. Describe the main components of confidentiality
Explain any risks or other technical considerations : Explain any risks or other technical considerations of which the president should be aware. Propose a wireless solution for the company, supporting

Reviews

Write a Review

Computer Engineering Questions & Answers

  Mathematics in computing

Binary search tree, and postorder and preorder traversal Determine the shortest path in Graph

  Ict governance

ICT is defined as the term of Information and communication technologies, it is diverse set of technical tools and resources used by the government agencies to communicate and produce, circulate, store, and manage all information.

  Implementation of memory management

Assignment covers the following eight topics and explore the implementation of memory management, processes and threads.

  Realize business and organizational data storage

Realize business and organizational data storage and fast access times are much more important than they have ever been. Compare and contrast magnetic tapes, magnetic disks, optical discs

  What is the protocol overhead

What are the advantages of using a compiled language over an interpreted one? Under what circumstances would you select to use an interpreted language?

  Implementation of memory management

Paper describes about memory management. How memory is used in executing programs and its critical support for applications.

  Define open and closed loop control systems

Define open and closed loop cotrol systems.Explain difference between time varying and time invariant control system wth suitable example.

  Prepare a proposal to deploy windows server

Prepare a proposal to deploy Windows Server onto an existing network based on the provided scenario.

  Security policy document project

Analyze security requirements and develop a security policy

  Write a procedure that produces independent stack objects

Write a procedure (make-stack) that produces independent stack objects, using a message-passing style, e.g.

  Define a suitable functional unit

Define a suitable functional unit for a comparative study between two different types of paint.

  Calculate yield to maturity and bond prices

Calculate yield to maturity (YTM) and bond prices

Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

Submit Assignment

Academics

Major Subjects

Majors

Get In Touch

whatsapp: +1-415-670-9521

Phone: +1-415-670-9521

Email: [email protected]

TERMS & POLICIES

HELP & SUPPORT

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd