2.3 Mobile and Small Form Factor Devices

Question 1

(Enterprise Mobility Management)

Answer 1

Centralized approach to management provides a consistent and comprehensive way of locking down devices to meet security polisies and compliance requirements while still allowing users to be productive

Question 2

(Enterprise Mobility Management)

containerization

Answer 2

isolates corporate data into protected and encrypted container stored on the mobile device

Question 3

(Enterprise Mobility Management)

Configuration profiles and payloads

Answer 3

• Configuration profiles are groups of OS and application setting applieed to various devices inside and outside of an enterprise
• Payloads are the individual settings in the configuration profiles

Question 4

(Enterprise Mobility Management)

POCE

Answer 4

Personally Owned, Corporate Enabled

-BYOD but with official enterprise onboarding requirements to ensure the device is properly managed

Question 5

(Enterprise Mobility Management)

Application Wrapping

Answer 5

additional sedurity features added to a mobile appplication that do not modify the underlying functionality of the application itself

Question 6

(Enterprise Mobility Management)

Remote assistance access

Answer 6

permits helpers to access the user;s device screen, observe settings, and monitor performance, intsall or remove applications, set up email, and configure VPN or wifi services

Question 7

(Enterprise Mobility Management)

VNC

Answer 7

Graphical desktop sharing tool that permits remote management of other devices.
-Uses Remote Frame Buffer (RFB) protocol for remote assistance

Question 8

(Enterprise Mobility Management)

MDM

Answer 8

Mobile device management
-often have the ability to create application configuration policies that may permit deployment of applications to include custom configurations and security options

Question 9

(Enterprise Mobility Management)

Over-the-air Updates

Answer 9

centralized and wireless distribution of new software, firmware, certificates, and encryption keys to mobile devices.

Question 10

(Enterprise Mobility Management)

Remote Wiping

Answer 10

process of sending a signal to a remote device to erase specified data

Question 11

(Enterprise Mobility Management)

SCEP

Answer 11

Simple Certificate Enrollment Protocol

-provides an easy process for network equipment, software, and mobile devices to enroll in digital certificates

Question 12

(Enterprise Mobility Management)

BYOD

Answer 12

Bring Your Own Device
-allows employees to bring in their own personal devices such as laptops, smartphones, and tablets to work in order to access enterprise applications and data

Question 13

(Enterprise Mobility Management)

COPE

Answer 13

Corporate Owned, Personally Enabled

-company purchases and owns the device and lets employees use them

Question 14

(Enterprise Mobility Management)

VPN

Answer 14

Virtual Private Network

Question 15

(Enterprise Mobility Management)

Application Permissions

Answer 15

applications require permissions to use cameras, microphones, call logs, email, etc

Question 16

(Enterprise Mobility Management)

Side Loading

Answer 16

process of installing applications from sources outside of the app store

Question 17

(Enterprise Mobility Management)

unsigned apps/system apps

Answer 17

Official apps are digitally singed for their legitimacy by the application developer

Question 18

(Enterprise Mobility Management)

context-aware management

Answer 18

applies restrictive policies to mobile devices based on certain device conditions like location or time of day

Question 19

(Enterprise Mobility Management)

Context Aware management - Geolocation

Answer 19

process of determining a devices location by using GPS devices or cell towers

Question 20

(Enterprise Mobility Management)

Context- aware management - User behavior

Answer 20

can detect when a user’s behavior on a device deviates from a norm

Question 21

(Enterprise Mobility Management)

Context-aware management - time based restrictions

Answer 21

applies certain security controls on a device based on the time of day

Question 22

(Security implications/privacy concerns)

Removable storage

Answer 22

built into mobile devices such as smartphones and tablets and cannot be removed

Question 23

(Security implications/privacy concerns)

cloud storage

Answer 23

used for backing up a mobile device settings, application data, photos, and videos, purchase history

Question 24

(Security implications/privacy concerns)

Transfer/Data Storage

Answer 24

free cloud services provide basic services such as free storage, file management recycle bin, content sharing but does not allow much control over the actual storage

Question 25

(Security implications/privacy concerns)

USB OTG

Answer 25

USB devices to ‘host’ other USB devices

Question 26

(Security implications/privacy concerns)

Device loss/theft

Answer 26

mobile devices are prone to theft or being forgotten

Question 27

(Security implications/privacy concerns)

Harward andti-tamper

Answer 27

resist deliberate attempts at cousing disruption to or malfunction of a device

Question 28

(Security implications/privacy concerns)

eFuse

Answer 28

supports reprogramming of a computer chip’s programming if adverse conditions, such as tampering, are detected.

Question 29

(Security implications/privacy concerns)

TPM

Answer 29

Trusted Platform Module
-built into most motherboards to generate and store encryption keys in order to provide root of trust capabilities for devices using encrypted hard drives

Question 30

(Security implications/privacy concerns)

Rooting

Answer 30

grants root-level privileges to android OS

Question 31

(Security implications/privacy concerns)

Jailbreaking

Answer 31

the process of removing certain security restrictions from iOS devices such as iPhones and iPads

Question 32

(Security implications/privacy concerns)

Push notification services

Answer 32

important messages sent to mobile devices by an application publisher or an enterprise MDM

Question 33

(Security implications/privacy concerns)

Geotagging

Answer 33

proccess of attaching geographically related information to common media types such as pictures, videos, SMS messages, and even websites

Question 34

(Security implications/privacy concerns)

Encrypted instant messaging apps

Answer 34

instant messaging applications can be encrypted to protect from packet sniffers

Question 35

(Security implications/privacy concerns)

tokenization

Answer 35

the process of using a non-sensitive value (token) as a substitute for the original sensitive value (credit card number)

Question 36

(Security implications/privacy concerns)

OEM/carrier android fragmentation

Answer 36

the wide disparity of android versions still in use due to older android devices being prevented by google from updating to the latest android version

Question 37

(Security implications/privacy concerns)

Mobile Payment

Answer 37

using smartphones and smart watches to submit mobile payments via their mobile devices payment appications

Question 38

(Security implications/privacy concerns)

inductance-enabled

Answer 38

NFC antennas use inductance by a wrapped coil of to generate a very small magnetic field. This can create a connection between two devices

Question 39

(Security implications/privacy concerns)

mobile wallet

Answer 39

virtual wallets that store payment card information on mobile devices

Question 40

(Security implications/privacy concerns)

peripheral-enabled payments

Answer 40

involve attaching credit card readers to smartphones in order to process credit cards

Question 41

(Security implications/privacy concerns)

Tethering

Answer 41

process of sharing a wireless connection to other devices via the wifi, USB, or bluetooth protocol

Question 42

(Security implications/privacy concerns)

authentication

Answer 42

mobile devices have multiple authentication methods to choose from including

• swipe pattern
• gesture
• pin code
• biometrics

Question 43

(Security implications/privacy concerns)

Malware

Answer 43

mobile devices are inherently more resistant to malware that PCs since mobile OSs place users behind restricted sandboxes

Question 44

(Security implications/privacy concerns)

Unauthorized domain bridging

Answer 44

when unauthorized wi-fi users connect through the dual-network-connected employee to reach the corporate wired network.

Question 45

(Security implications/privacy concerns)

baseband radio/SOC

Answer 45

hybrid CPU/RAM/firmware chip on mobile devices that handles its cellular radio connections

Question 46

(Security implications/privacy concerns)

Augmented reality

Answer 46

enhances or augments your real world by adding auditory, visual, haptic, and other digital sensory elements so that it feels like new environmental elements have been physically added into your current space.

Question 47

(Security implications/privacy concerns)

SMS/MMS/messaging

Answer 47

SMS/MMS messages are generally unencrypted

Question 48

(Wearable Technology)

Devices

Answer 48

• cameras
• watches
• fitness devices
• medical sensors/devices
• headsets

Question 49

(Wearable Technology)

Encrypted and unencrypted communications concerns

Answer 49

minimize/stop the use of wearables if it does not support encrypted communications

Question 50

(Wearable Technology)

physical reconnaissance

Answer 50

when attacker use wearable technology to gather information about an environment or its people

Question 51

(Wearable Technology)

Personal data theft

Answer 51

when attackers remotely pair with a device and extract its data

Question 52

(Wearable Technology)

health privacy

Answer 52

fitness devices, particularly medical devices, can generate, store, and transmit electronic health information about their owners

Question 53

(Wearable Technology)

Data forensics of collected data

Answer 53

practice of collecting, preserving, and analyzing digital evidence in order to understand all aspects of a digital crime