At the upcoming Black Hat DC security conference, software engineer Nicolas Seriot will focus on security and privacy issues involving third-party applications developed for the Apple iPhone.
A software engineer is highlighting the challenges facing mobile
application stores in an upcoming presentation at Black Hat DC.
In his presentation Feb. 3, software engineer Nicolas Seriot will focus on applications
for the Apple iPhone, and how Apple's guarantees of privacy and applications
can fall short at the App Store's virtual door.
"In late 2009, I was involved in discussions with the Swiss private
banking industry regarding the confidentiality of iPhone personal data,"
Seriot told eWEEK. "Bankers wanted to know how safe their information [stores]
were, which ones are exactly at risk and which ones are not. In brief, I showed
that an application downloaded from the App Store to a standard iPhone
could technically harvest a significant quantity of personal data ... [including]
the full name, the e-mail addresses, the phone number, the keyboard cache
entries, the Wi-Fi connection logs and the most recent GPS