SoylentNews

NIST Taking Input for Mobile Security Guidelines

posted by n1 on Friday August 22 2014, @05:31PM   
from the suggestions-are-being-monitored-for-quality-assurance-purposes dept.

AnonTechie writes:

PC World reports:

The U.S. National Institute of Standards and Technology (NIST) is developing a guide for testing third-party apps to ensure that they are secure and don’t introduce any vulnerabilities.

The government agency has prepared a draft of its recommendations, “Technical Considerations for Vetting 3rd Party Mobile Applications,” and is seeking industry feedback by Sept. 18. The aim is to help enterprises make full use of commercial mobile programs.

Would you like to contribute to the NIST effort?

• Priviliges Priviliges (Score: 4, Insightful) by Ethanol-fueled on Friday August 22 2014, @06:45PM

  by Ethanol-fueled (2792) on Friday August 22 2014, @06:45PM (#84435) Homepage

  How about not requiring access to the camera, voice recorder, contact list, internet, SMS, browsing history, all galleries and other stored media, accelerometers, and screen contents just to run a goddamn fart app?

  Starting Score:	1		point
  Moderation		+3
  Insightful=3, Total=3
  Extra 'Insightful' Modifier		0
  Total Score:		4

• Re:Priviliges (Score: 0) by Anonymous Coward on Friday August 22 2014, @06:50PM

  by Anonymous Coward on Friday August 22 2014, @06:50PM (#84438)

  Yep, access to sensors and "pii" are included in the things they propose to check for -- their .pdf says a lot of good things (but doesn't mention any of the three letter agencies).

  Parent

• Re:Priviliges (Score: 3, Insightful) by LoRdTAW on Friday August 22 2014, @08:53PM

  by LoRdTAW (3755) on Friday August 22 2014, @08:53PM (#84479) Journal

  How else will advertisers be able to data mine our personal lives in order to monazite our data into targeted ads and sellable statistical data? Wont someone please think of the advertisers!

  Parent