PhoneTalk

We asked Bloggers around the Internet for insights about cell phone security. Our final post in this series comes from Dameon Welch-Abernathy:

As mobile phones become more and more capable, security issues similar to what we see on desktop computers are a natural and expected consequence. The nature of the beast on mobile phones is very different from a typical personal computer, however. Part of this is due to the limited resources, part of this is because the operating system in use is very different from that of a desktop computer.

The single biggest threat on a mobile phone is also the single biggest threat on the desktop: the web browser. As the web browser gets more and more capable, simply visiting a page with carefully crafted Javascript could be enough to cause the cell phone to be subverted for other users. The device itself may not be compromised, but the cell phone could be used as an unwitting participant in hacking into a web site.

For third-party applications, both Windows Mobile and Symbian OS’ make use of application signing. The app can be cryptographically signed so that the content can be verified, if they so desire. S60 3rd Edition, which is Nokia's Symbian implementation, actually requires that all applications be signed. Signatures don't necessarily make it easier to track down a nefarious software author, but they do provide a way to verify that you're installing an application that might have trust issues.

The bottom line is that if you follow safe computing guidelines on your cell phone, you are less likely to be subject to malware or malicious software. This means: 

•  Don't run applications from people you don't know!
•  Browse only to trusted sites on the web.

If you want to see more from Dameon Welch-Abernathy, check out PhoneBoy..

Topics: Somethin' To Talk About Nokia Symbian Smart phones Business Use Security