Mobile software security threats in the software ecosystem, a call to Arms
Publication date
2017
Authors
Krupskiy, Andrey
Blessinga, Remmelt
Scholte, Jelmer
Jansen, Slinger
Editors
Werder, Karl
Ojala, Arto
Holmstrom Olsson, Helena
Advisors
Supervisors
Document Type
Part of book
Metadata
Show full item recordCollections
License
taverne
Abstract
This paper studies security policies of the Android and iOS software ecosystems. These platforms have experienced security issues since their public release in 2007. This research creates an overview of the results that security issues cause and the actions available to limit security infractions based on scientific literature. Following the overview, this paper attempts to explain premises of those issues by analyzing the security recommendations of both platforms and comparing them to OWASP security guidelines. This is done by comparing development guidelines set up by both platforms and assessing the importance of each of these guidelines in the ecosystem perspective. The conclusion highlights vulnerabilities in the developer guidelines of mobile platforms and recommends appropriate action to improve the situation.
Keywords
Development policies, OWASP, Software ecosystems, Software security, Taverne, Management Information Systems, Control and Systems Engineering, Business and International Management, Information Systems, Modelling and Simulation, Information Systems and Management
Citation
Krupskiy, A, Blessinga, R, Scholte, J & Jansen, S 2017, Mobile software security threats in the software ecosystem, a call to Arms. in K Werder, A Ojala & H Holmstrom Olsson (eds), Software Business - 8th International Conference, ICSOB 2017, Proceedings. Lecture Notes in Business Information Processing, vol. 304, Springer, pp. 161-175, 8th International Conference on Software Business, ICSOB 2017, Essen, Germany, 12/06/17. https://doi.org/10.1007/978-3-319-69191-6_11, conference