Selon l’institut Gartner, plus de 45,6 milliards d’applications mobiles ont été téléchargées en 2012. Alors que le taux d’utilisation d’applications sur les terminaux mobiles augmente, sécuriser les smartphones mais également les PC, tablettes, devient une priorité majeure pour les entreprises et les responsables de la sécurité informatique. Avec la prolifération d’applications mobiles tant professionnelles que grand public, les organisations ne peuvent pas toujours contrôler ou restreindre les applications installées sur les terminaux des utilisateurs. Elles doivent donc tester la façon dont les applications envoient et sauvegardent les données. La nouvelle solution sécurité d’IBM peut identifier automatiquement les points d’entrée et de sortie de ces dernières sur l’application mobile, aidant ainsi à prévenir les fuites de données.

Améliorer l’automatisation et réduire les coûts des applications mobiles iOS

Le rythme de lancement et de mise à jour des applications mobiles peut être contraignant pour les organisations qui essayent de maintenir des règles strictes en matière de sécurité. L’IBM AppScan Source 8.7 for iOS permet d’améliorer le niveau de sécurité, sans sacrifier la célérité de mise sur le marché de ces applications. Cela permet aux entreprises de mieux protéger chaque nouvelle application mobile face à des mises à jour constantes. IBM a déjà annoncé l’IBM AppScan for applications sur plate-forme Android.

De plus, l’IBM AppScan Source 8.7 for iOS peut réduire les coûts de développement d’applications sécurisées en intégrant la sécurité très tôt dans le cycle de développement. Il fournit aux développeurs une vision inégalée sur l’endroit où apparaissent les vulnérabilités dans leurs applications mobiles, ce qui améliore la sécurité sans sacrifier le délai de mise sur le marché.

“Cela démontre la volonté d’IBM d’aider ses clients à intégrer la sécurité dans leur infrastructure et solutions, depuis la conception, en passant par le développement et les phases de tests plutôt qu’aborder la sécurité à posteriori ” explique Caleb Barlow, directeur de la sécurité des applications, des données et de la mobilité, 

###

IBM MobileFirst Helps Organizations Strengthen App Security

Made in IBM Labs: Security Software Shows Where Vulnerabilities Appear in iOS Applications

ARMONK, N.Y. - 21 Feb 2013: IBM (NYSE: IBM) today announced security software that helps organizations proactively reduce the security risk to iOS enterprise apps. Clients will be able to build security testing into the initial design of mobile apps so that vulnerabilities can be detected early in the development process, before being deployed to customers or employees. Today's announcement further expands the IBM MobileFirst portfolio, which marries deep expertise with a comprehensive set of mobile software and cloud-based services.  

According to Gartner, more than 45.6 billion mobile apps were downloaded in 2012. As the rate of app use on mobile devices increases, securing smartphones and other endpoint devices is a top priority for organizations and Chief Information Security Officers. With the proliferation of consumer and enterprise mobile apps, organizations cannot always control or restrict the apps installed on user devices, so they must test how apps send and save data. IBM’s new security software can automatically identify where data enters and leaves a mobile app, helping to prevent mobile data leakage.  

Improving Security and Reducing Costs of iOS Mobile Apps

The pace of mobile application releases and updates can be overwhelming for organizations trying to maintain strict security guidelines and policies. IBM AppScan Source 8.7 for iOS provides the ability to improve security quality without sacrificing time-to-market of mobile app projects. This allows organizations to better protect each mobile app release in the face of constant updates. IBM previously announced IBM AppScan for apps running on the Android platform. 

KiwiTech is a leading mobile technology firm headquartered in Washington DC, and offices in New York and New Delhi. The company has developed more than 750 apps which have generated over three million downloads on iOS and Android platforms. With more than 200 mobile development and related professionals focused on app development, including security is a top priority for the organization. 

"Over the last four years, KiwiTech has developed hundreds of iOS and Android mobile apps for organizations around the world. As the risk from mobile malware and data leakage grows, our customers are looking for ways to secure their iOS and Android apps and protect corporate data,” said Rakesh Gupta, Chief Executive Officer, KiwiTech. “The new IBM AppScan product will allow us to proactively secure mobile apps and automate security testing to ensure our customers can keep pace with constant updates." 

In addition, IBM AppScan Source 8.7 for iOS can help reduce the cost of developing secure apps by building security analysis early into the development cycle. It provides developers with an unmatched view into where vulnerabilities appear in their mobile apps, which improves security quality without sacrificing time to market of mobile app projects. 

“This new capability showcases IBM’s execution in our strategy to help clients incorporate security into their infrastructure and solutions from the design, development and testing phases rather than leaving security to become an afterthought,” said Caleb Barlow, Director of Application, Data and Mobile Security, IBM. “It also aligns with the IBM MobileFirst strategy by empowering organizations with confidence to aggressively evolve and seize the business potential that mobility promises.” 

New capabilities to IBM AppScan Source 8.7 for iOS include:

Complete Language Support for Objective-C, JavaScript and Java: Includes the ability to do call and data flow analysis that will generate trace information. This new capability enables organizations to build secure enterprise mobile apps, regardless of technology choice, for employees and partners.

Support for US Federal Government Requirements: Internet Protocol version 6 (IPv6) and use of a FIPS 140-2 validated cryptographic module.

40,000 Mobile Security APIs Supported: IBM Security Research conducted a comprehensive analysis on the iOS Software Development Kit (SDK) to include coverage of APIs that might introduce security risks. The API profiles have been added to the IBM AppScan Source Security Knowledgebase and tied to the analysis engine. Combined with the research conducted on the Android SDK, IBM AppScan Source has researched and characterized the security risk of approximately 40,000 mobile APIs.

IBM AppScan Source 8.7 for iOS is planned for release on March 25th. 

About IBM Security

AppScan is part of IBM's portfolio that provides the security intelligence to help organizations holistically protect their people, data, applications and infrastructure. IBM offers solutions for identity and access management, security information and event management, database security, application development, risk management, endpoint management, next-generation intrusion protection and more. IBM operates one of the world's broadest security research and development, and delivery organizations. This comprises 10 security operations centers, nine IBM Research centers, 11 software security development labs and an Institute for Advanced Securitywith chapters in the United States, Europe and Asia Pacific. IBM monitors 15 billion security events per day in more than 130 countries and holds more than 3,000 security patents. 

For more information on IBM security, please visit: www.ibm.com/security. 

About IBM MobileFirst

As the first new technology platform for business to emerge since the World Wide Web, mobile computing represents one of the greatest opportunities for organizations to expand their business. Based on nearly 1,000 customer engagements, 10 mobile-related acquisitions in the last four years, a team of thousands of mobile experts and 270 patents in wireless innovations, IBM MobileFirst offers an array of solutions that helps businesses connect, secure, manage and develop mobile networks, infrastructures and applications. 

To learn more, visit the IBM MobileFirst press kit or http://www.ibm.com/mobilefirst. Follow @ibmmobile, #ibmmobile on Twitter, and see IBM MobileFirst on YouTube, Tumblr and Instagram.

Créer un fil d'info personnalisé

Besoin d'aide sur les fils d'info RSS ? (US)