Stories
Slash Boxes
Comments

SoylentNews is people

NIST Taking Input for Mobile Security Guidelines

posted by n1 on Friday August 22 2014, @05:31PM   Printer-friendly
from the suggestions-are-being-monitored-for-quality-assurance-purposes dept.

AnonTechie writes:

PC World reports:

The U.S. National Institute of Standards and Technology (NIST) is developing a guide for testing third-party apps to ensure that they are secure and don’t introduce any vulnerabilities.

The government agency has prepared a draft of its recommendations, “Technical Considerations for Vetting 3rd Party Mobile Applications,” and is seeking industry feedback by Sept. 18. The aim is to help enterprises make full use of commercial mobile programs.

Would you like to contribute to the NIST effort?

 
This discussion has been archived. No new comments can be posted.
NIST Taking Input for Mobile Security Guidelines | Log In/Create an Account | Top | 10 comments | Search Discussion
Display Options Threshold/Breakthrough Mark All as Read Mark All as Unread
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.

  • (Score: 3, Insightful) by tibman on Friday August 22 2014, @07:40PM

    by tibman (134) Subscriber Badge on Friday August 22 2014, @07:40PM (#84452)

    Read the entire document. The biggest hole is they do not talk about how to block automatic updates or unapproved software installs. If the whole point is to vet an app before it reaches the device then you must control the update and install mechanism. It could be permissive and just blacklist known bad applications.. at a minimum.

    Added 5 comments to their excel sheet and sent it in : )

    --
    SN won't survive on lurkers alone. Write comments.
    Starting Score:    1  point
    Moderation   +1  
       Insightful=1, Total=1
    Extra 'Insightful' Modifier   0  
    Karma-Bonus Modifier   +1  
    Total Score:   3