[in]security: Trusted on Busted (or mobile app security)

[Gary McGraw <gem () cigital com>]

hi sc-l,

What?  Another article on mobile security?  And this one focused only on apps?  <stifles yawn>

Yes.

The gist of the "trusted on busted" idea is that mobile app security takes three things: 1) standard software security 
with a bit of special sauce, 2) real attention to app store hygiene, and 3) app operational awareness.  What's 
"operational awareness" and how do I do that, you ask?  Read the article and find out.

McGraw's mobile app security strategy: Three legs of 'trusted on 
busted'<http://searchsecurity.techtarget.com/opinion/McGraws-mobile-app-security-strategy-Three-legs-of-trusted-on-busted>
  (or http://bit.ly/Wn8xei <http://t.co/zuc9PV1G>  in short form for twitter and not for Kevin Wall)

Your thoughts welcome.

gem

company www.cigital.com
podcast www.cigital.com/silverbullet
blog www.cigital.com/justiceleague
book www.swsec.com


_______________________________________________
Secure Coding mailing list (SC-L) SC-L () securecoding org
List information, subscriptions, etc - http://krvw.com/mailman/listinfo/sc-l
List charter available at - http://www.securecoding.org/list/charter.php
SC-L is hosted and moderated by KRvW Associates, LLC (http://www.KRvW.com)
as a free, non-commercial service to the software security community.
Follow KRvW Associates on Twitter at: http://twitter.com/KRvW_Associates
_______________________________________________