Barney's Blog

Blog archive

Can't Rush Good Security

I hope you're sitting down for this breaking news: It actually takes some time (and patience) to develop secure mobile applications.

This radical train of thought, which came out at last week's CompTIA's Tech Summit on Cybersecurity in Washington, goes against the traditional way of thinking that if you close your eyes and hit a bunch of buttons, applications will secure themselves.

While the suggested notion that dedicated time for correct testing and auditing of mobile apps will lead to less security holes seems like a no-brainer to me, only 17 percent of available apps are actually following correct practices for mobile security.

So what is the other 83 percent's excuse? Apparently it's a lack of secure development lifecycle tools. With the market evolving rapidly, and with multiple platforms (old and new) to consider, it may not be in the cards to purchase all the necessary tools to satisfy every mobile OS. And even if you do have the correct tools, who has the time to develop it properly for multiple platforms?

So what does this mean? Should mobile developers limit their reach, specializing in only the one or two platforms that it has the correct tools for? And while this study focuses on mobile development, its common sense message can be applied to all facets of development and IT.

Do you feel you have the adequate amount of time and funding to implement secure practices? Let Doug know at dbarney@redmondmag.com.
-By Chris Paoli

Posted by Chris Paoli on 08/10/2011 at 1:18 PM


Featured

  • Performing a Storage Refresh on Windows Server 2016, Part 2

    Earlier, Brien walked through the steps of preparing a physical Windows Server 2016 machine for a storage refresh. Now, he shows how to complete the process, all the way to OS restoration.

  • New Office App Coming to Windows 10 Users

    Microsoft is delivering a new Office app for Windows 10 consumer and business users over the new few weeks, according to a Wednesday announcement.

  • Microsoft Warns .NET Core 1.0 and 1.1 Losing Support in June

    Microsoft gave notice this week that .NET Core 1.0 and 1.1 will fall out of support on June 27, 2019.

  • Microsoft Publishes Windows Deadlines on Upgrading to SHA-2

    Microsoft on Friday described its 2019 timeline for when it will start distrusting Secure Hash Algorithm-1 (SHA-1) in supported Windows systems, as well as in the Windows Server Update Services 3.0 Service Pack 2 management product.

comments powered by Disqus

Office 365 Watch

Sign up for our newsletter.

Terms and Privacy Policy consent

I agree to this site's Privacy Policy.