Mobile application Threat Modeling

Author: Client Uploads

March 3rd, 2021

Introduction Describe Your Mobile Application Architecture a) Describe device-specific features used by the application, wireless transmission protocols, data transmission media, interaction with hardware components, and other applications. b) Identify the needs and requirements for application security, computing security, and device management and security. c) Describe the operational environment and use cases. d) Identify the operating system security and enclave/computing environment security concerns, if there are any. Include an overview of topics such as mobile platform security, mobile protocols and security, mobile security vulnerabilities, and related technologies and their security, in your report. Include the Mobile Application considerations that are relevant to your mobile application What is the design of the architecture (network infrastructure, web services, trust boundaries, third-party APIs, etc.)? What are the common hardware components? What are the authentication specifics? What should or shouldn’t the app do? Define the Requirements for Your Mobile Application What is the business function of the app? What data does the application store/process (provide data flow diagram)? The diagram outlines network, device file system, and application data flows How are data transmitted between third-party APIs and app(s)? Will there be remote access and connectivity? Read this resource about mobile VPN security, and include any of these security issues in your report. Are there different data-handling requirements between different mobile platforms? (iOS/Android/Blackberry/Windows/J2ME) Does the app use cloud storage APIs (e.g., Dropbox, Google Drive, iCloud, Lookout) for device data backups Is there specific business logic built into the app to process data? What does the data give you (or an attacker) access to? Think about data at rest and data in motion as they relate to your app. Do stored credentials provide authentication? Do stored keys allow attackers to break crypto functions (data integrity)? Are third-party data being stored and/or transmitted? What are the privacy requirements of user data? Consider, for example, a unique device identifier (UDID) or geolocation being transmitted to a third party. Are there user privacy-specific regulatory requirements to meet? How do other data on the device affect the app? Consider, for example, authentication credentials shared between apps. Compare between jailbroken (i.e., a device with hacked or bypassed digital rights software) and non-jailbroken devices. How do the differences affect app data? This can also relate to threat agent identification. Identify Threats and Threat Agents Identify possible threats to the mobile application and Threat agents Outline the process for defining what threats apply to your mobile application Does personal data intermingle with corporate data? Identify Methods of Attack Provide senior management an understanding of the possible methods of attack of your app. Controls What are the controls to prevent an attack? Conduct independent research, then define these controls by platform (e.g., Apple iOS, Android, Windows Mobile, BlackBerry). What are the controls to detect an attack? Define these controls by platform. What are the controls to mitigate/minimize impact of an attack? Define these controls by platform. What are the privacy controls (i.e., controls to protect users’ private information)? An example of this would be a security prompt for users to access an address book or geolocation. Conclusion a) Describe device-specific features used by the application, wireless transmission protocols, data transmission media, interaction with hardware components, and other applications. b) Identify the needs and requirements for application security, computing security, and device management and security. c) Describe the operational environment and use cases. d) Identify the operating system security and enclave/computing environment security concerns, if there are any. Include an overview of topics such as mobile platform security, mobile protocols and security, mobile security vulnerabilities, and related technologies and their security, in your report. Include the Mobile Application considerations that are relevant to your mobile application What is the design of the architecture (network infrastructure, web services, trust boundaries, third-party APIs, etc.)? What are the common hardware components? What are the authentication specifics? What should or shouldn’t the app do?

Don't use plagiarized sources. Get Your Custom Essay on

Get a 15% discount on this Paper

Order Essay

Quality Guaranteed

With us, you are either satisfied 100% or you get your money back-No monkey business

Check Prices

Make an order in advance and get the best price

Type of paper

Academic level

Deadline

Pages (550 words)

$0.00

*Price with a welcome 15% discount applied.

Pro tip: If you want to save more money and pay the lowest price, you need to set a more extended deadline.

We know that being a student these days is hard. Because of this, our prices are some of the lowest on the market.

Instead, we offer perks, discounts, and free services to enhance your experience.

step 1

Upload assignment instructions

Fill out the order form and provide paper details. You can even attach screenshots or add additional instructions later. If something is not clear or missing, the writer will contact you for clarification.

step 2

Relax

Once you place an order with our professional do my paper services, all you need to do is relax as our experts work to impress you with amazing quality and timing for your order!

step 3

Review the final draft

As soon as the paper is ready, we’ll send you a copy via email. You'll also be able to download it from your account and request a revision or rate the work as appropriate.

Get personalized services with My Paper Support

One writer for all your papers

You can select one writer for all your papers. This option enhances the consistency in the quality of your assignments. Select your preferred writer from the list of writers who have handledf your previous assignments

Same paper from different writers

Are you ordering the same assignment for a friend? You can get the same paper from different writers. The goal is to produce 100% unique and original papers

Copy of sources used

Our homework writers will provide you with copies of sources used on your request. Just add the option when plaing your order

What our partners say about us

We appreciate every review and are always looking for ways to grow. See what other students think about our do my paper service.

Nursing

Always a job well done. I really appreciate the hard work.

Customer 452453, January 4th, 2021

Other

GREAT

Customer 452813, June 20th, 2022

Human Resources Management (HRM)

Thanks for the paper. Hopefully this one will receive higher than a C and has followed all guidelines.

Customer 452701, November 16th, 2022

Human Resources Management (HRM)

Well written paper. Thank you so much.

Customer 452701, September 25th, 2023

Social Work and Human Services

Great Job!

Customer 452587, October 27th, 2021

Technology

The paper is everything I needed and more. I will add a title and a cover page to it. Other than that the paper turned out excellent.

Customer 452885, October 17th, 2022

Education

Thank you so much!

Customer 452675, March 17th, 2023

Human Resources Management (HRM)

Thank you so much.

Customer 452701, October 11th, 2023

Philosophy

excellent job i will be coming back for any future papers if I have too.

Customer 452611, October 11th, 2021

English 101

I'm glad i came to you guys

Customer 452519, May 11th, 2021

Nursing

Always perfectly done!

Customer 452955, October 28th, 2023

Other

great

Customer 452813, July 9th, 2022

Enjoy affordable prices and lifetime discounts

Use a coupon FIRST15 and enjoy expert help with any task at the most affordable price.

Order Now Order in Chat