Insufficient security protocols in mobile apps risk exposing data pushed across networks
New technique helps app developers secure data shared with 3rd party mobile networks
IBM inventors have patented a cloud computing security technique that the company said enables app developers to ensure that data notifications are securely and confidentially pushed to and from mobile devices.
Maintaining the privacy and confidentiality of data shared via mobile networks is a priority for developers, service providers and end-users, IBM said in a statement.
Yet IBM security researchers found that insufficient security protocols in mobile applications can risk exposing details of data notifications pushed across mobile networks, potentially exposing personal or sensitive information to service providers.
This mobile security exposure is problematic and limiting to organisations that wish to use mobile notifications to communicate sensitive information with their customers, such as a credit card company wanting to notify a customer of suspicious charges or a bank needing to alert customers to suspicious account activity.
To address this mobile security challenge, a team of IBMers invented a cloud-based service that enables developers to create applications that can encrypt data notifications, and assign them a unique message identifier (ID) in the cloud that is securely transmitted to a mobile device via a third-party service provider.
Once the end-user’s device authorises the message, the recipient can pull down and access the encrypted message content from the cloud.
“This patented invention will enable developers and service providers to design and build applications that ensure sensitive or personal information is not inadvertently exposed across mobile networks,” said Benjamin Fletcher, inventor and software engineering researcher at IBM.
“Regardless of the nature of data being pushed to or from a mobile device, it should never be exposed to third-parties since they cannot always guarantee the security and confidentiality to customers,” he added.
IBM received US Patent #8,634,810, “Pushing secure notifications to mobile computing devices," for the invention.
Privacy concerns may limit mobile app adoption in Malaysia: GSMA
As mobile usage grows, so should security: IDC
The world needs to unite on privacy and trust: EU official
For more technology news and the latest updates, follow us on Twitter, LinkedIn or Like us on Facebook.