iPhone cleared for security primetime

Powered by SC Magazine
 

Safe for now, but uncertain future.

The hundreds of thousands of new iPhone owners should not lose any sleep over the security of the Apple smartphone in the near future, say experts.

"While vulnerabilities may be found and zero-day exploits may be released, chances of widespread infection are currently low," security researcher Eric Chien with Symantec wrote in a posting on a company blog.

The reduced risk stems from Apple's decision to keep development of third-party software limited to browser-based JavaScript and Ajax code. This keeps users in a secure 'sandbox' environment that prevents malicious code from accessing other parts of the system.

Chien also cited the iPhone's automatic upgrade system, which allows for speedy deployment of patches.

Other security experts, however, aren't so sure about the iPhone's defenses.

Trend Micro's Todd Thiemann and David Perry toldvnunet.com that while the iPhone currently faces fewer threats than competing smartphones, the long-term outlook is much more hazy.

If Apple decides to open developer access to the iPhone in order to compete with other smartphones, new software components will be available for attackers to target.

"The key factor is the degree to which you can install third-party apps," said Thiemann, director of device security marketing.

"There's a smaller risk of anything bad happening, but the market dynamics are such that consumers are moving towards (open) smartphones."

Likewise, if the iPhone takes off and gains significant market share, it will see a great deal more scrutiny from an increasingly for-profit malware development community.

"If the iPhone becomes the lead dog, research will get done," said Perry, global director of education.

"When you move from the caboose of the train to the locomotive, you find it is the locomotive that hits things."

Copyright ©v3.co.uk


iPhone cleared for security primetime
 
 
 
Top Stories
Beyond ACORN: Cracking the infosec skills nut
[Blog post] Could the Government's cybercrime focus be a catalyst for change?
 
The iTnews Benchmark Awards
Meet the best of the best.
 
Telstra hands over copper, HFC in new $11bn NBN deal
Value of 2011 deal remains intact.
 
 
Sign up to receive iTnews email bulletins
   FOLLOW US...
Latest Comments
Polls
Who do you trust most to protect your private data?







   |   View results
Your bank
  39%
 
Your insurance company
  3%
 
A technology company (Google, Facebook et al)
  8%
 
Your telco, ISP or utility
  7%
 
A retailer (Coles, Woolworths et al)
  2%
 
A Federal Government agency (ATO, Centrelink etc)
  20%
 
An Australian law enforcement agency (AFP, ASIO et al)
  14%
 
A State Government agency (Health dept, etc)
  6%
TOTAL VOTES: 1803

Vote
Do you support the abolition of the Office of the Information Commissioner?