Book Image

Learning iOS Security

Book Image

Learning iOS Security

Overview of this book

Related Content you might be interested in

Current Title:

Small book image
Learning iOS Security
Feb, 2015 | 142 pages
No titles found
Table of Contents (13 chapters)
Learning iOS Security
Learning iOS Security
Credits
Credits
About the Authors
About the Authors
About the Reviewers
About the Reviewers
www.PacktPub.com
www.PacktPub.com
Preface
Preface
Free Chapter
1
iOS Security Overview
iOS Security Overview
Pairing
Backing up your device
Initial security checklist
Safari and built-in App protections
Predictive search and spotlight
Summary
2
Introducing App Security
Introducing App Security
Installing apps
Single App mode, App Lock, and Guided Access
App communication
Keybags and keychains
Keyboards and extensions
Sandboxing and App data storage
Introduction to in-house App development
Summary
3
Encrypting Devices
Encrypting Devices
Secure boot and activating iOS
Passbook and Touch ID for Apple Pay
Privacy-related concerns
Configuration profiles
Summary
4
Organizational Controls
Organizational Controls
Apple Configurator
Activation Lock and Find My iPhone
ActiveSync
Summary
5
Mobile Device Management
Mobile Device Management
Introducing MDM
Configurator versus MDM
The Profile Manager
Introducing Bushel
Summary
6
Debugging and Conclusion
Debugging and Conclusion
Xcode
Dive deeper with libimobiledevice
App communications
Apple IDs and Apps
Forensics
Application security
Viewing an App
Summary
Index
Index

Privacy-related concerns

Just as earlier when we discussed Apple Pay, you may find it odd to see a section on privacy, but as we said, these days with identity theft and other ways customers can leak data through social engineering, the concerns for organizations are more pressing. Practically speaking, it's just a lot of overhead when directory harvest attacks catch the less-astute employees who fall for tricks that cause them to hand over their credentials, and then administrators need to go through the process of locking them out and fixing their mailboxes.

Tip

Administrative overhead is the least of the concerns for larger, well-known internet companies that would be very embarrassed, at the very least, if their employees were phished or were clumsy with their credentials. It became public that one company in particular had deployed a plug-in to the web browser that they developed whose purpose was to detect when network credentials were being entered in an insecure or bogus form, thereby...

Previous Section
End of Section 4
Next Section