Book Image

Learning iOS Security

Book Image

Learning iOS Security

Overview of this book

Related Content you might be interested in

Current Title:

Small book image
Learning iOS Security
Feb, 2015 | 142 pages
No titles found
Table of Contents (13 chapters)
Learning iOS Security
Learning iOS Security
Credits
Credits
About the Authors
About the Authors
About the Reviewers
About the Reviewers
www.PacktPub.com
www.PacktPub.com
Preface
Preface
Free Chapter
1
iOS Security Overview
iOS Security Overview
Pairing
Backing up your device
Initial security checklist
Safari and built-in App protections
Predictive search and spotlight
Summary
2
Introducing App Security
Introducing App Security
Installing apps
Single App mode, App Lock, and Guided Access
App communication
Keybags and keychains
Keyboards and extensions
Sandboxing and App data storage
Introduction to in-house App development
Summary
3
Encrypting Devices
Encrypting Devices
Secure boot and activating iOS
Passbook and Touch ID for Apple Pay
Privacy-related concerns
Configuration profiles
Summary
4
Organizational Controls
Organizational Controls
Apple Configurator
Activation Lock and Find My iPhone
ActiveSync
Summary
5
Mobile Device Management
Mobile Device Management
Introducing MDM
Configurator versus MDM
The Profile Manager
Introducing Bushel
Summary
6
Debugging and Conclusion
Debugging and Conclusion
Xcode
Dive deeper with libimobiledevice
App communications
Apple IDs and Apps
Forensics
Application security
Viewing an App
Summary
Index
Index

Passbook and Touch ID for Apple Pay

We briefly touched on Touch ID in Chapter 1, iOS Security Overview, but more implementation details around timeouts and other key-related interactions are better describe Apple's own iOS Security – White Paper (as they go to great lengths to make things as understandable as possible). At the time of writing, the most recent PDF was from October 2014 and it can be found at https://www.apple.com/privacy/docs/iOS_Security_Guide_Oct_2014.pdf.

As Touch ID should still just be considered an added convenience, sufficiently complex passcodes are, as always, recommended in all things that are security-related.

Tip

If your customers or users are like ours, they will forget their devices' passcodes after getting used to using Touch ID. Therefore, make sure that you do not leave your customers in a situation without MDM management (or backups, if your organization encourages it), especially if the ActiveSync-based "failed password attempt" limit is configured. Once...

Previous Section
End of Section 3
Next Section