Click here to close now.

Welcome!

CloudExpo® Blog Authors: Liz McMillan, Baruch Sadogursky, Elizabeth White, Carmen Gonzalez, Ian Khan

News Feed Item

IBM MobileFirst Helps Organizations Strengthen App Security

Made in IBM Labs: Security Software Shows Where Vulnerabilities Appear in iOS Apps

ARMONK, N.Y., Feb. 21, 2013 /PRNewswire/ -- IBM (NYSE: IBM) today announced security software that helps organizations proactively reduce the security risk to iOS enterprise apps. Clients will be able to build security testing into the initial design of mobile apps so that vulnerabilities can be detected early in the development process, before being deployed to customers or employees. Today's announcement further expands the IBM MobileFirst portfolio, which marries deep expertise with a comprehensive set of mobile software and cloud-based services.  

(Logo: http://photos.prnewswire.com/prnh/20090416/IBMLOGO)

According to Gartner, more than 45.6 billion mobile apps were downloaded in 2012. As the rate of app use on mobile devices increases, securing smartphones and other endpoint devices is a top priority for organizations and Chief Information Security Officers. With the proliferation of consumer and enterprise mobile apps, organizations cannot always control or restrict the apps installed on user devices, so they must test how apps send and save data. IBM's new security software can automatically identify where data enters and leaves a mobile app, helping to prevent mobile data leakage. 

Improving Security and Reducing Costs of iOS Mobile Apps
The pace of mobile application releases and updates can be overwhelming for organizations trying to maintain strict security guidelines and policies. IBM AppScan Source 8.7 for iOS provides the ability to improve security quality without sacrificing time-to-market of mobile app projects. This allows organizations to better protect each mobile app release in the face of constant updates. IBM previously announced IBM AppScan for apps running on the Android platform.

KiwiTech is a leading mobile technology firm headquartered in Washington DC, and offices in New York and New Delhi. The company has developed more than 750 apps which have generated over three million downloads on iOS and Android platforms. With more than 200 mobile development and related professionals focused on app development, including security is a top priority for the organization.

"Over the last four years, KiwiTech has developed hundreds of iOS and Android mobile apps for organizations around the world. As the risk from mobile malware and data leakage grows, our customers are looking for ways to secure their iOS and Android apps and protect corporate data," said Rakesh Gupta, Chief Executive Officer, KiwiTech. "The new IBM AppScan product will allow us to proactively secure mobile apps and automate security testing to ensure our customers can keep pace with constant updates."

In addition, IBM AppScan Source 8.7 for iOS can help reduce the cost of developing secure apps by building security analysis early into the development cycle. It provides developers with an unmatched view into where vulnerabilities appear in their mobile apps, which improves security quality without sacrificing time to market of mobile app projects.

"This new capability showcases IBM's execution in our strategy to help clients incorporate security into their infrastructure and solutions from the design, development and testing phases rather than leaving security to become an afterthought," said Caleb Barlow, Director of Application, Data and Mobile Security, IBM. "It also aligns with the IBM MobileFirst strategy by empowering organizations with confidence to aggressively evolve and seize the business potential that mobility promises."

New capabilities to IBM AppScan Source 8.7 for iOS include:

  • Complete Language Support for Objective-C, JavaScript and Java: Includes the ability to do call and data flow analysis that will generate trace information. This new capability enables organizations to build secure enterprise mobile apps, regardless of technology choice, for employees and partners.
  • Support for US Federal Government Requirements: Internet Protocol version 6 (IPv6) and use of a FIPS 140-2 validated cryptographic module.
  • 40,000 Mobile Security APIs Supported: IBM Security Research conducted a comprehensive analysis on the iOS Software Development Kit (SDK) to include coverage of APIs that might introduce security risks. The API profiles have been added to the IBM AppScan Source Security Knowledgebase and tied to the analysis engine. Combined with the research conducted on the Android SDK, IBM AppScan Source has researched and characterized the security risk of approximately 40,000 mobile APIs.

IBM AppScan Source 8.7 for iOS is planned for release on March 25th.

About IBM Security
AppScan is part of IBM's portfolio that provides the security intelligence to help organizations holistically protect their people, data, applications and infrastructure. IBM offers solutions for identity and access management, security information and event management, database security, application development, risk management, endpoint management, next-generation intrusion protection and more. IBM operates one of the world's broadest security research and development, and delivery organizations. This comprises 10 security operations centers, nine IBM Research centers, 11 software security development labs and an Institute for Advanced Security with chapters in the United States, Europe and Asia Pacific. IBM monitors 15 billion security events per day in more than 130 countries and holds more than 3,000 security patents.

For more information on IBM security, please visit: www.ibm.com/security.

About IBM MobileFirst
As the first new technology platform for business to emerge since the World Wide Web, mobile computing represents one of the greatest opportunities for organizations to expand their business. Based on nearly 1,000 customer engagements, 10 mobile-related acquisitions in the last four years, a team of thousands of mobile experts and 270 patents in wireless innovations, IBM MobileFirst offers an array of solutions that helps businesses connect, secure, manage and develop mobile networks, infrastructures and applications.

To learn more, visit the IBM MobileFirst press kit or http://www.ibm.com/mobilefirst. Follow @ibmmobile, #ibmmobile on Twitter, and see IBM MobileFirst on YouTube, Tumblr and Instagram.

Contact(s) information

John Connolly
IBM Media Relations
(781) 636-8512
[email protected]

Tod Freeman
IBM Media Relations
(415) 320-5893
[email protected]

SOURCE IBM

More Stories By PR Newswire

Copyright © 2007 PR Newswire. All rights reserved. Republication or redistribution of PRNewswire content is expressly prohibited without the prior written consent of PRNewswire. PRNewswire shall not be liable for any errors or delays in the content, or for any actions taken in reliance thereon.

@CloudExpo Stories
In a world of ever-accelerating business cycles and fast-changing client expectations, the cloud increasingly serves as a growth engine and a path to new business models. Dynamic clouds enable businesses to continuously reinvent themselves, adapting their business processes, their service and software delivery and their operations to achieve speed-to-market and quick response to customer feedback. As the cloud evolves, the industry has multiple competing cloud technologies, offering on-premises ...
SYS-CON Events announced today that SUSE, a pioneer in open source software, will exhibit at SYS-CON's DevOps Summit 2015 New York, which will take place June 9-11, 2015, at the Javits Center in New York City, NY. SUSE provides reliable, interoperable Linux, cloud infrastructure and storage solutions that give enterprises greater control and flexibility. More than 20 years of engineering excellence, exceptional service and an unrivaled partner ecosystem power the products and support that help ...
As the world moves from DevOps to NoOps, application deployment to the cloud ought to become a lot simpler. However, applications have been architected with a much tighter coupling than it needs to be which makes deployment in different environments and migration between them harder. The microservices architecture, which is the basis of many new age distributed systems such as OpenStack, Netflix and so on is at the heart of CloudFoundry – a complete developer-oriented Platform as a Service (PaaS...
T-Mobile has been transforming the wireless industry with its “Uncarrier” initiatives. Today as T-Mobile’s IT organization works to transform itself in a like manner, technical foundations built over the last couple of years are now key to their drive for more Agile delivery practices. In his session at DevOps Summit, Martin Krienke, Sr Development Manager at T-Mobile, will discuss where they started their Continuous Delivery journey, where they are today, and where they are going in an effort ...
SAP is delivering break-through innovation combined with fantastic user experience powered by the market-leading in-memory technology, SAP HANA. In his General Session at 15th Cloud Expo, Thorsten Leiduck, VP ISVs & Digital Commerce, SAP, discussed how SAP and partners provide cloud and hybrid cloud solutions as well as real-time Big Data offerings that help companies of all sizes and industries run better. SAP launched an application challenge to award the most innovative SAP HANA and SAP HANA...
There is no question that the cloud is where businesses want to host data. Until recently hypervisor virtualization was the most widely used method in cloud computing. Recently virtual containers have been gaining in popularity, and for good reason. In the debate between virtual machines and containers, the latter have been seen as the new kid on the block – and like other emerging technology have had some initial shortcomings. However, the container space has evolved drastically since coming on...
P2P RTC will impact the landscape of communications, shifting from traditional telephony style communications models to OTT (Over-The-Top) cloud assisted & PaaS (Platform as a Service) communication services. The P2P shift will impact many areas of our lives, from mobile communication, human interactive web services, RTC and telephony infrastructure, user federation, security and privacy implications, business costs, and scalability. In his session at @ThingsExpo, Robin Raymond, Chief Architect...
The widespread success of cloud computing is driving the DevOps revolution in enterprise IT. Now as never before, development teams must communicate and collaborate in a dynamic, 24/7/365 environment. There is no time to wait for long development cycles that produce software that is obsolete at launch. DevOps may be disruptive, but it is essential. The DevOps Summit at Cloud Expo – to be held June 3-5, 2015, at the Javits Center in New York City – will expand the DevOps community, enable a wide...
The web app is Agile. The REST API is Agile. The testing and planning are Agile. But alas, Data infrastructures certainly are not. Once an application matures, changing the shape or indexing scheme of data often forces at best a top down planning exercise and at worst includes schema changes which force downtime. The time has come for a new approach that fundamentally advances the agility of distributed data infrastructures. Come learn about a new solution to the problems faced by software orga...
Cloud Expo, Inc. has announced today that Andi Mann returns to DevOps Summit 2015 as Conference Chair. The 4th International DevOps Summit will take place on June 9-11, 2015, at the Javits Center in New York City. "DevOps is set to be one of the most profound disruptions to hit IT in decades," said Andi Mann. "It is a natural extension of cloud computing, and I have seen both firsthand and in independent research the fantastic results DevOps delivers. So I am excited to help the great team at ...
Explosive growth in connected devices. Enormous amounts of data for collection and analysis. Critical use of data for split-second decision making and actionable information. All three are factors in making the Internet of Things a reality. Yet, any one factor would have an IT organization pondering its infrastructure strategy. How should your organization enhance its IT framework to enable an Internet of Things implementation? In his session at Internet of @ThingsExpo, James Kirkland, Chief Ar...
Container technology is sending shock waves through the world of cloud computing. Heralded as the 'next big thing,' containers provide software owners a consistent way to package their software and dependencies while infrastructure operators benefit from a standard way to deploy and run them. Containers present new challenges for tracking usage due to their dynamic nature. They can also be deployed to bare metal, virtual machines and various cloud platforms. How do software owners track the usag...
CA Technologies has announced it has signed a definitive agreement to acquire Rally Software Development Corp. for $19.50 per share, which equates to approximately $480 million, net of cash acquired. The transaction has been unanimously approved by both Boards of Directors, and is expected to close in the second quarter of CA’s fiscal 2016. Based in Boulder, CO, Rally has approximately 500 employees across four continents and FY 2015 sales of $88 million. “Software applications are changing the...
The security devil is always in the details of the attack: the ones you've endured, the ones you prepare yourself to fend off, and the ones that, you fear, will catch you completely unaware and defenseless. The Internet of Things (IoT) is nothing if not an endless proliferation of details. It's the vision of a world in which continuous Internet connectivity and addressability is embedded into a growing range of human artifacts, into the natural world, and even into our smartphones, appliances, a...
Enterprises are fast realizing the importance of integrating SaaS/Cloud applications, API and on-premises data and processes, to unleash hidden value. This webinar explores how managers can use a Microservice-centric approach to aggressively tackle the unexpected new integration challenges posed by proliferation of cloud, mobile, social and big data projects. Industry analyst and SOA expert Jason Bloomberg will strip away the hype from microservices, and clearly identify their advantages and d...
The OpenStack cloud operating system includes Trove, a database abstraction layer. Rather than applications connecting directly to a specific type of database, they connect to Trove, which in turn connects to one or more specific databases. One target database is Postgres Plus Cloud Database, which includes its own RESTful API. Trove was originally developed around MySQL, whose interfaces are significantly less complicated than those of the Postgres cloud database. In his session at 16th Cloud...
All major researchers estimate there will be tens of billions devices - computers, smartphones, tablets, and sensors - connected to the Internet by 2020. This number will continue to grow at a rapid pace for the next several decades. With major technology companies and startups seriously embracing IoT strategies, now is the perfect time to attend @ThingsExpo, June 9-11, 2015, at the Javits Center in New York City. Learn what is going on, contribute to the discussions, and ensure that your enter...
What do a firewall and a fortress have in common? They are no longer strong enough to protect the valuables housed inside. Like the walls of an old fortress, the cracks in the firewall are allowing the bad guys to slip in - unannounced and unnoticed. By the time these thieves get in, the damage is already done and the network is already compromised. Intellectual property is easily slipped out the back door leaving no trace of forced entry. If we want to reign in on these cybercriminals, it's hig...
The 4th International Internet of @ThingsExpo, co-located with the 17th International Cloud Expo - to be held November 3-5, 2015, at the Santa Clara Convention Center in Santa Clara, CA - announces that its Call for Papers is open. The Internet of Things (IoT) is the biggest idea since the creation of the Worldwide Web more than 20 years ago.
SYS-CON Events announced today that MetraTech, now part of Ericsson, has been named “Silver Sponsor” of SYS-CON's 16th International Cloud Expo®, which will take place on June 9–11, 2015, at the Javits Center in New York, NY. Ericsson is the driving force behind the Networked Society- a world leader in communications infrastructure, software and services. Some 40% of the world’s mobile traffic runs through networks Ericsson has supplied, serving more than 2.5 billion subscribers.