Linked by David Adams on Fri 12th Sep 2008 16:39 UTC, submitted by Dannys
The opening up of the mobile industry is great news for application developers but not so good for IT security professionals, according to experts. For example, Symbian, the single most widely used mobile software platform, has already wrestled with the dangers of openness to third-party developers, said Khoi Nguyen, group product manager in mobile security at Symantec. Symbian 7 and 8 were fairly open and allowed almost any application to be installed and run. This led to a few hundred viruses being introduced within a couple of years, so Symbian 9 was locked down significantly, he said.
Permalink for comment 330264
To read all comments associated with this story, please click here.
To read all comments associated with this story, please click here.
Recent Original Stories
Recent Comments
Headlines
Random Comments
Random Stories
Random OS Link
Member since:
2005-07-06
Security: something that secures or makes safe.
Obscurity: the condition of being unknown.
Security through Obscurity (or Obsecurity): Something that secures or makes safe through the condition of being unknown.
In other words, a password, private key, system spec, or any other bit of information that if known would compromise the security of the system.
The trick is where you isolate this obscurity. You DON'T want to rely on the core system remaining obscure, because the ENTIRE system will be compromised if the secret ever gets out. You DO want passwords to be obscure because only the parts of the system a single or group of users has access to become compromised, and further security violations can be prevented by simply revoking their access.
Security relies on being able to verify the identity of someone or something, and the only two ways to achieve this are by either using difficult to guess secrets, or difficult to replicate characteristics.
In computing, it is very easy to replicate identifying information, so shared secrets are the only way to go. In the physical world, we can take advantage of the inherent difficulty of replicating certain things, and this is the form of security used by physical currency such as Dollars, and why Gold is such a useful standard.
And neither form of security is absolute. There is always a chance that a secret will be guessed, or that an identity will be replicated. All security is a matter of chance. Good security just stacks the deck in your favor.