I agree but there is one caveat, if I have physical access to the phone, you can just take the battery out of it ( Bingo your remote wipe is gone), then hook up the phone and boot the os, find out where the keys are stored on the device ( yes the encryption keys are stored on the device), and decrypt it, and your info is my info now, and you know all those juicy corporate emails with the crown jewels on some merger, sale etc etc are on those devices)
Aaron Turner from the IANS Faculity has done pretty extensive research on this subject and I have seen his presentations on the mobile device security matters many times, and its pretty scary how dependent we are on a very insecure technology.... http://blog.iansresearch.net/2011/05/katherine-teitler-byod-the-horse-is-out-of-the-barn.html But I like Marc tangent, why even want physical device if I can plant malware on your smart phone and just siphon off the information I want anyways, makes it easier to take advantage to the information obtained. (Aka some of the items discussed above) Food for thought, Z Edward E. Ziots CISSP, Network +, Security + Security Engineer Lifespan Organization Email:ezi...@lifespan.org Cell:401-639-3505 -----Original Message----- From: Marc Maiffret [mailto:mmaiff...@eeye.com] Sent: Wednesday, October 12, 2011 1:11 AM To: NT System Admin Issues Subject: RE: Android Handset Makers - Adding Value or Vulnerabilities? Encryption of corporate data as a protection mechanism on mobile devices has the same flaws as desktop OS systems. I.E. I can exploit the phone, grab root, and grab your data once it is unencrypted/accessible/unlocked as your viewing/browsing it etc... Obviously such attacks are not really there yet on the mobile platform but they exist on the desktop/server OS's and it all works the same really from a threat perspective. Encryption in this context, and in desktop/server, only helps with data at rest or in transit. Otherwise it does little to nothing to keep the bad guys from getting your data. I remember one of the first 10 vulnerabilities I discovered was in PGP, just to make a more visual point about how much encryption does not help compared to the perception of it. This obviously does not mean you should not use it, just should not think it is really going to protect your data as it relates to attacks coming across the wire etc... -Marc Signed, Marc Maiffret Founder/CTO eEye Digital Security WEB: http://www.eEye.com BLOG: http://blog.eeye.com TWITTER: http://twitter.com/marcmaiffret -----Original Message----- From: Sam Cayze [mailto:sca...@gmail.com] Sent: Tuesday, October 11, 2011 8:44 AM To: NT System Admin Issues Subject: RE: Android Handset Makers - Adding Value or Vulnerabilities? Or just get Good Messaging for Enterprise and not worry too much about the platform and various security threats. (At least with the Corporate side info. Personal data can still be compromised). It runs in an Encrypted Sandbox on most all platforms. http://www.good.com/solutions/mobile-security.php From: Rod Trent [mailto:rodtr...@myitforum.com] Sent: Tuesday, October 11, 2011 9:46 AM To: NT System Admin Issues Subject: RE: Android Handset Makers - Adding Value or Vulnerabilities? Windows Phone is still wait and see. -- Sent from Kaiten Mail for Android. Please excuse my brevity. John Hornbuckle <john.hornbuc...@taylor.k12.fl.us> wrote: There's a third viable platform: Windows Phone 7. John Hornbuckle, MSMIS, PMP MIS Department Taylor County School District www.taylor.k12.fl.us -----Original Message----- From: Bill Humphries [mailto:nt...@hedgedigger.com] Sent: Tuesday, October 11, 2011 10:03 AM To: NT System Admin Issues Subject: Re: Android Handset Makers - Adding Value or Vulnerabilities? So, does this mean your smartphone is an iphone? Bill Marc Maiffret wrote: > I thought some of the NTSYSADMIN'ers would enjoy this post as I saw the HTC > vuln. was mentioned the other day here. > > http://blog.eeye.com/vulnerability-management/android_security > > If nothing else fun hack to mess with your HTC/Samsung Android using > co-workers. :-) > > -Marc > > Signed, > Marc Maiffret > Founder/CTO > eEye Digital Security > WEB: http://www.eEye.com > BLOG: http://blog.eeye.com > TWITTER: http://twitter.com/marcmaiffret > > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ > <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> > <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/%3e> ; ~ > > --- > To manage subscriptions click here: > http://lyris.sunbelt-software.com/read/my_forums/ > or send an email to listmana...@lyris.sunbeltsoftware.com > with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/%3e> ; ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/%3e> ; ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
