Re: Mobile device security guides

[Greg Williams <gwillia5 () UCCS EDU>]

Great resource -  US-CERT.  Full paper here:
http://www.us-cert.gov/reading_room/TIP10-105-01.pdf 

Best Practices on page 12:

Maintain up-to-date software, including operating systems and applications;

Install anti-virus software as it becomes available and maintain up-to-date
signatures and engines;

Enable the personal identification number (PIN) or password to access the
mobile device, if available;

Encrypt personal and sensitive data, when possible;

Disable features not currently in use such as Bluetooth, infrared, or Wi-Fi;

Set Bluetooth-enabled devices to non-discoverable to render them invisible
to unauthenticated devices;

Use caution when opening email and text message attachments and clicking
links;

Avoid opening files, clicking links, or calling numbers contained in
unsolicited email or text messages;

Avoid joining unknown Wi-Fi networks;

Delete all information stored in a device prior to discarding it; and

Maintain situational awareness of threats affecting mobile devices.



-----Original Message-----
From: The EDUCAUSE Security Constituent Group Listserv
[mailto:SECURITY () LISTSERV EDUCAUSE EDU] On Behalf Of Isac Balder
Sent: Thursday, August 05, 2010 7:37 AM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: [SECURITY] Mobile device security guides

In preparing our "welcome" packets and information for the incoming class, I
realized we are missing information for mobile devices in particular
iphone/ipad and android.


Starting to google for industry white papers, until that bears something
useful...


Does anyone have or know of any security guides for the average user for
these types of devices that they are willing to share?


Thanks


I.B.

"top posting cause yahoo makes me..."