All the latest UK technology news, reviews and analysis
|
|
|
11 Jul 2007
The hundreds of thousands of new iPhone owners should not lose any sleep over the security of the Apple smartphone in the near future, experts have said.
"While vulnerabilities may be found and zero-day exploits may be released, the chances of widespread infection are currently low," security researcher Eric Chien from Symantec wrote in a posting on a company blog.
The reduced risk stems from Apple's decision to keep development of third-party software limited to browser-based JavaScript and Ajax code.
This keeps users in a secure 'sandbox' environment that prevents malicious code from accessing other parts of the system.
Chien also cited the iPhone's automatic upgrade system, which allows for the speedy deployment of patches.
However, security experts at Trend Micro are not so sure about the iPhone's defences in the longer term.
Todd Thiemann, director of device security marketing, and David Perry, global director of education, told vnunet.com that, while the iPhone currently faces fewer threats than competing smartphones, the long-term outlook is much more hazy.
If Apple decides to open developer access to the iPhone in order to compete with other smartphones, new software components will be available for attackers to target, the Trend Micro researchers warned.
"The key factor is the degree to which you can install third-party apps," said Thiemann. "There is a smaller risk of anything bad happening, but the market dynamics are such that consumers are moving towards [open] smartphones."
Likewise, if the iPhone gains significant market share, it will come under a great deal more scrutiny from an increasingly for-profit malware development community.
"If the iPhone becomes the lead dog, research will get done," said Perry. " When you move from the caboose of the train to the locomotive, you find it is the locomotive that hits things."
Latest stories from Communications
Related articles
Related jobs
Poll
What is the most important IT priority for your company this year?
Connect with V3.co.uk
This paper focuses on a series of best practices and techniques for development teams looking to improve their software development processes
Why good data management at all levels is essential in the modern business (video, 6mins)
Software Development Manager - London, 12 Month Contract...
PROCUREMENT AND COMMERCIAL MANAGER BERKSHIRE...
Hardware Engineer / Field Service Support Analyst £16...
Infrastructure / Implementation Support Engineer (Windows...
Keep up to date with the latest products, services and technologies from the world's leading IT companies. IThound.com brings you over 2,000 white papers, case studies and analyst reports.
Do you agree?
So let me get this straight..
The current sandbox model works for the iPhone and Jobs has made it clear that he is NOT willing to make the iPhone an unstable platform just so that apps can run, but somehow the future is hazy? Huh? Jobs is working hard to redefine how the mobile phone market works. So why would he take all the juice he's got going only to revert to the existing model of open apps access and HORRIBLE stability? Makes no sense. Yes, just like Mac OS X, an exploit in the wild will eventually surface. However, the very architecture is more secure and the iPhone that much more so. What I don't get is that if Apple had made the iPhone totally open to devs, the security community would have been dancing in the streets because a Mac OS X product was so vulnerable... I think Apple chose wisely.
Posted by: Mackeyser 11 Jul 2007