Mobile Forensics

Challenge & Solution  

Challenges

Personal mobile devices, a la, Bring Your Own Device (“BYOD”) policies, and corporate-owned devices alike, offer significant challenges to securing the mobile workforce.  Loss, theft, and information leakage abound in the mobile device world, leaving security managers, practitioners, and executives with the enormous task of protecting their organizations from mobile security threats, enforcing acceptable use policies, and centrally managing devices with the goal of reducing risk.  To exacerbate the situation, there are two “buckets” related to mobile forensics to be taken into consideration:

  • The need for a forensically sound acquisition and analysis process, suitable for civil and criminal litigation, and security incident response
  • Offensive forensics, used to analyze data storage and handling practices, to ensure information leakage via mobile applications does not adversely affect an organization’s security posture or end users’ privacy

Solution

FishNet Security applies a separate approach to each mobile forensics challenge.  First, in the case of litigation support and incident response, a team of VISA and MasterCard qualified incident response assessors handle data collection, analysis, and when required, serve as expert witnesses in a court of law.  FishNet Security has invested heavily in commercial forensic tools, and a forensic lab that meets the most restrictive requirements in the field.

In the second case, forensics experts of the incident management team work directly with expert mobile application security consultants to provide a thorough examination of mobile devices in the context of a targeted mobile application.  The combination of a mobile application assessment and this forensic review ensures safe data handling practices for data in motion and at rest are in place.

Benefits

  • Quick, thorough, and expert response – In the event of a breach, or other incident, you can rely on FishNet Security’s experienced IR team to address your immediate needs.
  • Risk assessment – the combination of commercial forensic analysis, and offensive forensic analysis of an application on a jailbroken or rooted device ensures the safe use, handling, and storage of sensitive data, and reduces the risk of information leakage or disclosure as a result of poor, or incomplete, secure mobile application development practices.
  • FishNet Security can provide a mobile application forensic review, which results in information about whether application data is handled properly.  Sensitive information should be subjected to the same policies applied to other data stores, namely, encryption at rest, in transit, and implemented with strong algorithms, through appropriate APIs.