Top Banner
Norshidah Mohamed, PhD International Business School http://www.ibs.utm.my Universiti Teknologi Malaysia Kuala Lumpur 17 June, 2014
11

PRESENTATION DATA PROTECTION CONFERENCE ASIAN LEGAL BUSINESS (ALB) 2014 KUALA LUMPUR

Dec 15, 2014

Download

Education

Norshidah Mohamed

Panelist for The “Applification” of society – the dominance of mobile and tablet applications: Implications for data protection. Covers Mobile Apps.
Welcome message from author
This document is posted to help you gain knowledge. Please leave a comment to let me know what you think about it! Share it to your friends and learn new things together.
Transcript
Page 1: PRESENTATION DATA PROTECTION CONFERENCE ASIAN LEGAL BUSINESS (ALB) 2014 KUALA LUMPUR

Norshidah Mohamed, PhDInternational Business School

http://www.ibs.utm.myUniversiti Teknologi Malaysia

Kuala Lumpur17 June, 2014

http://www.ibs.utm.my/
Page 2: PRESENTATION DATA PROTECTION CONFERENCE ASIAN LEGAL BUSINESS (ALB) 2014 KUALA LUMPUR

2

OUTLINE

• Data protection issues in mobile apps – what have developers overlooked?

• Consumer’s/user’s privacy experience – protect or expose?

• Privacy Impact Assessment• Guidance for consumer/user and business

Page 3: PRESENTATION DATA PROTECTION CONFERENCE ASIAN LEGAL BUSINESS (ALB) 2014 KUALA LUMPUR

3

WHAT HAVE DEVELOPERS OVERLOOKED?

Indicators of some critical vulnerabilities in banking apps:• 90% of apps are exposed to traffic

interception (with several non-SSL links)• 50% of apps are vulnerable to JavaScript

injections• 40% of apps did not validate the authenticity

of SSL certificatesSource: http://www.darkreading.com/vulnerabilities---threats/weak-security-in-most-mobile-banking-apps/d/d-id/1141054?

Page 4: PRESENTATION DATA PROTECTION CONFERENCE ASIAN LEGAL BUSINESS (ALB) 2014 KUALA LUMPUR

4

USER’S PRIVACY – PROTECT OR EXPOSE?

• Competitive ecosystem – Apple iTunes & Android based platform

• Most developers are not trained to develop secure apps

• Use of cloud-based apps is a trade-off between handing over privacy and download of apps

• Research has shown that user is unaware of the implications of giving permission to download an app

Page 5: PRESENTATION DATA PROTECTION CONFERENCE ASIAN LEGAL BUSINESS (ALB) 2014 KUALA LUMPUR

5

USER’S PRIVACY – PROTECT OR EXPOSE?.. cont’

• Location, contacts, calendar, reminder, photos – are just some examples that downloaded apps access!

• Apps could have been created by fraudsters and loaded with malware

• Unsecured WiFi is a toll-free highway for fraudsters to gain access to mobile devices, seize control or gain access to account information.

Page 6: PRESENTATION DATA PROTECTION CONFERENCE ASIAN LEGAL BUSINESS (ALB) 2014 KUALA LUMPUR

6

PRIVACY IMPACT ASSESSMENT?

What’s being done?De Facto standards that define:• development and test of secure mobile apps?• apps store security practice? • corrective actions on security breach?• cloud-based management that include

provisioning, policy, data management of mobile devices

Page 7: PRESENTATION DATA PROTECTION CONFERENCE ASIAN LEGAL BUSINESS (ALB) 2014 KUALA LUMPUR

7

PRIVACY IMPACT ASSESSMENT? ? .. cont’

• authentication to several cloud-based providers

• ISO?• IT governance framework?• Mobile App Security Working Group

Page 8: PRESENTATION DATA PROTECTION CONFERENCE ASIAN LEGAL BUSINESS (ALB) 2014 KUALA LUMPUR

8

SELECTED RECENT CASES & GUIDANCE?

Page 9: PRESENTATION DATA PROTECTION CONFERENCE ASIAN LEGAL BUSINESS (ALB) 2014 KUALA LUMPUR

9

SELECTED RECENT CASES & GUIDANCE?

Page 10: PRESENTATION DATA PROTECTION CONFERENCE ASIAN LEGAL BUSINESS (ALB) 2014 KUALA LUMPUR

10

SELECTED RECENT CASES & GUIDANCE?

Page 11: PRESENTATION DATA PROTECTION CONFERENCE ASIAN LEGAL BUSINESS (ALB) 2014 KUALA LUMPUR

11

THANK [email protected]

mailto:[email protected]

Related Documents
Kuala Lumpur 2016

Kuala Lumpur 2016

Category: Documents
XANGO KUALA LUMPUR

XANGO KUALA LUMPUR

Category: Business
PROCEEDING KUALA LUMPUR INTERNATIONAL ...Proceeding - Kuala Lumpur International Business, Economics and Law Conference. December 3 – 4, 2012. Hotel Putra, Kuala Lumpur, Malaysia.

PROCEEDING KUALA LUMPUR INTERNATIONAL ...Proceeding - Kuala....

Category: Documents
PIERS 2012 Kuala Lumpur · PIERS 2012 Kuala Lumpur Progress In Electromagnetics Research Symposium Program March 27–30, 2012 Kuala Lumpur, MALAYSIA

PIERS 2012 Kuala Lumpur · PIERS 2012 Kuala Lumpur Progress...

Category: Documents
5D4N KUALA LUMPUR MALACCA GENTING - Mirmas Travelmirmastravel.com/wp...KUALA-LUMPUR-MALACCA-GENTING.pdf · 11/5/2018  · 5D4N KUALA LUMPUR MALACCA GENTING D1 ARRIVAL – KUALA LUMPUR

5D4N KUALA LUMPUR MALACCA GENTING - Mirmas...

Category: Documents
Kuala Lumpur Regional Centre for Arbitration Kuala …lawasiamoot.org/pdf/files2016/internationalrounds/1015-R.pdf · Kuala Lumpur Regional Centre for Arbitration Kuala Lumpur, Malaysia

Kuala Lumpur Regional Centre for Arbitration Kuala...

Category: Documents
Kuala Lumpur Places that can be visited in Kuala Lumpur Couple … · 2020. 9. 24. · Kuala Lumpur Kuala Lumpur is the capital of Malaysia. Its advanced horizon is ruled by the 451m-tall

Kuala Lumpur Places that can be visited in Kuala Lumpur...

Category: Documents
BUILDING THE RIGHT THING - YTL E-SOLUTIONS · Resort (Kuala Lumpur) • JW Marriott Hotel Kuala Lumpur • The Majestic Hotel Kuala Lumpur • The Ritz-Carlton, Kuala Lumpur - Suite

BUILDING THE RIGHT THING - YTL E-SOLUTIONS · Resort (Kuala...

Category: Documents
 · SPB Yang Dipertuan Agong's Birthday VENUE Le Meridien Hotel. Kuala Lumpur Kuala Lumpur Kuala Lumpur Royale Chulan, Kuala Lumpur Kuala Lumpur ANNEX 1 As at 3 December 2014 REMARKS

 · SPB Yang Dipertuan Agong's Birthday VENUE Le Meridien.....

Category: Documents
KUALA LUMPUR

KUALA LUMPUR

Category: Documents
CIRARC Kuala Lumpur

CIRARC Kuala Lumpur

Category: Documents
Kuala lumpur presentation

Kuala lumpur presentation

Category: Design