One-off security installation 'not enough', says TCG
Mobile device designers and operating system manufacturers are being called to consider their products’ security a ‘work in progress’, rather than a one-off activity.
The message — delivered by Trusted Computing Group’s (TCG) Mobility Solutions Work Group Co-Chair Ira McDonald — comes amid growing concerns that the “trend for greater connectivity, driven by functionality and convenience, is putting mobile devices at risk of exploitation and making them more vulnerable to attacks”.
“As security threats become more sophisticated, mobile device designers and operating system manufacturers will need to ensure they have proactive protection plans in place that can evolve throughout the product’s life cycle and quickly respond to new threats as they emerge,” she said.
This would take multiple cybersecurity countermeasures and, potentially, a ‘defence in depth’ approach, which would allow mobile phones to be updated even after they’ve been compromised, according to McDonald.
“In order to keep mobile devices secure, the designers of these systems must assess all of the attacks that they must resist and the consequences of a successful attack,” McDonald said.
“The risk assessment can help designers to weigh the costs and benefits of the various firmware and software update approaches and choose an approach that provides adequate protection for their system.”
Information Technology Professionals Association (ITPA) is a not-for-profit organisation focused on continual professional development for its 18,700 members. To learn more about becoming an ITPA member, and the range of training opportunities, mentoring programs, events and online forums available, go to www.itpa.org.au.
Govt unveils code of practice to boost IoT security
The Australian Government has released a code of practice for IoT devices like smart televisions...
Career opportunities booming in RPA
UiPath has revealed that the COVID-19 pandemic has increased demand for robotic process...
Magento 1 still in wide use despite reaching end of life
Adobe has issued the final patches for version 1 of the popular e-commerce platform Magento, but...