Mobile security testing approaches and challenges

Author

Yong Wang ; Alshboul, Yazan

Author_Institution

Coll. of Bus. & Inf. Syst., Dakota State Univ., Madison, SD, USA

fYear

2015

fDate

20-21 Feb. 2015

Firstpage

1

Lastpage

5

Abstract

Mobile devices such as smartphones and tablets are widely used for personal and business purposes. A mobile device may carry sensitive data and becomes an easy target for cyber criminals. Mobile security is thus important. Mobile security testing targets to detect vulnerabilities and malicious apps on a mobile device. In this paper, we present four testing approaches for mobile security: mobile forensic, penetration test, static analysis, and dynamic analysis. A mobile security testing network is further demonstrated in the paper to evaluate the effectiveness of the four testing approaches. Our testing results indicate that mobile security testing tools are still in their early development stages and efforts are desired to improve these tools. We conclude the paper with a summary of mobile security testing challenges and future directions.

Keywords

digital forensics; mobile computing; program diagnostics; program testing; dynamic analysis; mobile forensic; mobile security testing network; penetration test; static analysis; Forensics; Malware; Mobile communication; Smart phones; Testing; Mobile security; challenges; testing approaches;

fLanguage

English

Publisher

ieee

Conference_Titel

Mobile and Secure Services (MOBISECSERV), 2015 First Conference on

Conference_Location

Gainesville, FL

Type

conf

DOI

10.1109/MOBISECSERV.2015.7072880

Filename

7072880