e-testing Blog

How Testing Helps to Deal with Information Security Challenges on Mobile Devices

By Ewelina Matalowksa

Over 70 per cent of people in the UK now own smartphones. The “smart” mobile Mobile Securitydevices have become an irreplaceable part of our lives. However, as significant growth is observed in using smartphones, their security capabilities are not as strong as it would be expected. The problem with increasing amount of information stored on mobile devices and their security seems to be understated. More and more sensitive information is carried around every day, which makes a room for possible malware attacks. It is widely known that people put in place a high level of security protection on their PCs but not on their smartphones.

Clearly, having all kinds of personal and sensitive data makes Smartphone an asset worth protection. Unfortunately, the threat is very high for mobile device users. As they can be compared to desktop systems, the same security provisions ought to be available. Lack of security features leads to lower level of protection in a fundamentally more vulnerable location.
Security can be defined as the quality or state of being secure. It is protection against adversaries and its critical elements, including systems and hardware that is being used to store and transmit the information.
Six significant information security challenges are as follows:

  •  e-commerce requirements
    e-commerce is an important channel for conducting business and being connected with the customers 24/7.
  • Information security attacks
    Security attacks have grown significantly damaging business operations as well as individual usage. Three major issues have influenced the increase in security incidents: number of vulnerabilities, labour intensity to address vulnerabilities and complexity of attacks.
  •  Immature information security market
    One of the challenges faced by IT professionals is the sheer amount of data they need to absorb and manage. Another important issue is underestimated security need.
  • Information security staff shortage
    Knowledgeable IT professionals who can provide a long term strategies to improve security are needed.
  •  Government legislation and industry regulations
    As a concern for high risk of personal information misuse, the European Data Protection Directive has been created. This directive prohibits the export of any personal data to countries that do not meet the EU minimum standard for privacy protection.
  • Mobile workforce and wireless computing
    The challenge from information security perspective is to enable a safe use of the devices for the business and individual use. Companies must ensure that their most valuable data is secure and individual must be sure his privacy is not compromised (Egan, 2005).

As a result for security threats, the security testing gained its importance in recent years. It is performed to ensure that the applications or products are fully secure and safe for storing and transmitting user’s information. It shows if the information is vulnerable to attacks, if it is easily hacked into or accessed without the necessary authorisations. The most crucial aspects of information security that must be tested are:

  •  Confidentiality
  • Integrity
  • Authentication
  •  Availability
  • Authorisation
  • Non-repudiation.

The most common security testing type is Penetration Test. This non-functional testing explores the weaknesses of the application/systems in order to uncover any vulnerability.
As can be seen, people carrying a lot of personal data with them at all times, are potential victims of hacks, security breaches, loss or exposure of their private information. The importance of testing is significant and should not be underestimated. No one wants to share content that is not intended to others or experience loss of business reputation due to information leaks. Those advert situations should be warning and persuade to assure a better information security through high level of security testing.

e-testing have a team of specialist mobile testers who are experienced with all mobile devices and operating systems and can support you in all your mobile testing needs. For more information visit our Mobile Device Testing Service webpage or contact us info@etesting.com or call us on 0208 905 2761.


Subscribe to our RSS feed and get the latest updates in your inbox weekly