Apple Blocking iPhone Security Software

Barence writes "Speaking exclusively to PC Pro, Eugene Kaspersky has claimed Apple has repeatedly refused to deliver the software development kit necessary to design security software for the phone. 'We have been in contact for two years with Apple to develop our anti-theft software, [but] still we do not have permission,' said Kaspersky. Although he admits the risk of viruses infecting the iPhone is 'almost zero,' he claims that securing the data on the handset is critical, especially as iPhones are increasingly being used for business purposes. 'I don't want to say Apple's is the wrong way of behaving, or the right way,' Kaspersky added. 'It's just a corporate culture — it wants to control everything.'"

At least good news !

[Yvanhoe]

Leaving Kaspersky out is the first interesting feature I see in this whole Apple App Store scheme !

However Spyware on the iPhone is rife

[sh0rtie]

this guy created a whole site because of the problem and the iPhones inability to block/stop such behaviour
http://i-phone-home.blogspot.com/

Re:However Spyware on the iPhone is rife

[clone53421]

The reason he had to jailbreak his iPhone, no doubt, is because otherwise it would have been completely impossible to write a firewall for it, or to hide the phone’s UDID.

How about you actually read his blog? The apps he was testing are from the AppStore...

Top Gun from the iPhone AppStore is currently number 24 on the AppStore paid applications list.

Another accelerometer game, this time a Top Gun remake.

Version tested: 1.2 (current as of writing)

This iPhone app is Pinchmedia enabled, it tracks and reports the following:
- iPhone UDID
- iPhone model & firmware version
- application code
- application version
- iPhone jailbreak status
- if app is pirated/cracked
- application startup & exit times
- has an entry for lat/lon but its not used

Max Injury from the iPhone AppStore is currently number 11 on the AppStore paid applications list.

A mini-game where you have to maximize the damage to a dummy via various challenges.

Version tested: 1.0.2 (current as of writing)

This application is flurry enabled, if you have PrivaCy 0.9.3037-2 or above the metrics will be blocked. This app tracks:

- application ID & version
- iPhone model, firmware
- iPhone UDID

Or how about this one, which not only reports your UDID but also your phone number:

iMobsters from the iPhone AppStore is currently number 14 on the AppStore free applications list

Lets cut to the chase on this one, this is another Storm8 iPhone app the same as Vampires Live.

During use, the application tracks and reports:
- your mobile phone number
- application version, number
- unique ID of your iPhone
- points (if applicable)
- iPhone model
- firmware version

Re:However Spyware on the iPhone is rife

[clone53421]

User tracking, targeted advertisements, etc.

Just recently, the EFF showed that seemingly-innocuous information is probably enough to uniquely identify you from the hundreds of thousands or millions of visitors to a particular site. And that’s not even on the same playing field as a vendor-assigned unique device ID.

You know who else has your phone number? EVERYONE.

No. Nobody has my phone number except the people I’ve given it to.

AT&T has your phone number too...where is the uproar?

And I’m pretty sure they can’t sell it to 3rd parties without my consent.

Re:Nothing to see here folks

[Pojut]

This is more about the closed nature of the App Store more than the necessity (or lack thereof) for a security app. In fact, the sporadic and seemingly hypocritical nature of Apple's approval process alone is reason enough for me to not get an iPhone (being stuck on AT&T and having no hardware keyboard are the other two reasons...although I could look past those two if it meant anyone could had an app put up for download.)

Granted, you can jailbreak an iPhone and install whatever you want, but I shouldn't have to hack a phone just so I can use whatever program I want on it. Being held to Apple's decision on what I can or can't use on there is a deal breaker for me.

it wants to control everything

[HalAtWork]

"it wants to control everything"

...which is one way of preventing malware, it's working pretty well so far for that platform.

Re:it wants to control everything

[prockcore]

.which is one way of preventing malware, it's working pretty well so far for that platform.

Depends on your definition of malware. Spyware is rife on the app store. Pinch Media's analytics tracking is all over the app store.. more than 30 million downloads contained their tracking software... at least according to Pinch Media itself.

Here is everything that apps with pinch media analytics are sending to them:

Your iPhones unique ID, iPhone model and OS version, application info, whether or not the iphone is jailbroken, whether or not the application is pirated, time & date you start and stop the application, your current latitude & longitude, and if facebook is installed on your iphone, your gender and birthday.

Wrong way of behaving

[clone53421]

I don't want to say Apple's is the wrong way of behaving

Well, I do. It’s the wrong way of behaving.

Re:We already have an anti-virus

Man, you obviously don't deal in the real world or at least in large org.

Google for a couple of mins and you find that the "encryption" on the latest iPhone 3GS has already been broken.

There's no proper central management of the device; the iPhone has to be tethered.

If you set some settings on the device, there's nothing stopping the user from changing configuration again.

So it's fine for you if you want to keep some personal contacts and maybe your shopping list; it's nowhere near the level one would expect it to be used in the financial or government sectors.

That's why RIM and BES reign supreme in that area.
I wish Apple would wise up; lord knows I deal constantly with "senior managers" who want to use their toys at our hospital.

Just say "no".

[argent]

The antivirus companies have been pushing antivirus software for handheld devices since 1999.

In the succeeding decade... so far as I'm aware... the damage caused by viruses on handhelds, ALL handhelds, has been less than the damage due to one false positive incident caused by Norton Antivirus shortly after the pointless hubbub over the Palm "Phage" malware.

Antivirus software for handhelds... just say "no".

Re:We already have an anti-virus

[CharlyFoxtrot]

Just because the iPhone has similar functionality built in doesn't mean 3rd party vendors shouldn't be able to compete. I happen to be writing this comment with Firefox on a machine that came with IE already....

Apple doesn't want to give developers access to the API's to do things like remote wipe. So they either block everyone from doing it or they make an exception for certain vendors. Apple isn't very big on making exceptions for any external company, even Google gets the choice of doing it the Apple way or hitting the highway. Nobody seems to mind in this case except the anti-virus cartel who are seeing their core market melt way now Windows is becoming secure and they don't have a foothold in this decade's growth market, mobile devices.

Re:We already have an anti-virus

[RulerOf]

It can encrypt all data by default and remotely wipe the device, and even end users can get the GPS coordinates of the device if they have MobileMe.

I know this, because I work for an iPhone nut.

If you're a business user, you're using Exchange 2007 with ActiveSync to remotely manage the iPhone and deliver email. If you've got a wish to drive yourself insane, you're also using MobileMe on that same device.

MobileMe has some neat features, but quite frankly it's complete bullshit that those features (Find my iPhone et. al.) are mutually exclusive from a phone with an ActiveSync binding. MobileMe + ActiveSync is highly discouraged by all of the Apple support reps I've spoken with, and to date, my boss has had nothing but nightmares involving the combination of the two.

butthurt

[stokessd]

It appears that Kaspersky is butthurt because it sees a potential market for more crap we don't need and the controllers of that market don't want, and have the ability to lock them out of that market.

From Apple's point of view, they have remote wipe on both the corporate and personal levels already. And having somebody inside your shorts providing duplicate functionality is fail from top to bottom. I'm surprised that apple even answered the phone when they saw who was calling.

Also Kaspersky can have the SDK anytime they want, it's free. They will have to pay $99 to actually deploy the apps though. What they want is a super special "inside your shorts" SDK that I'd bet isn't coming anytime soon.

Sheldon

A solution looking for a problem?

[aristotle-dude]

The iPhone3GS already has built in hardware level encryption of the entire storage device. It also has BSD jails for apps to run inside of and there is the Appstore approval process.

This "software" could not be ordinary software but would rather require Apple opening up the OS to third party extensions which ran at a privileged level above the sandboxes. I just don't see that every happening for a couple of reasons.

1. The Kaspersky software itself could have exploitable flaws and given that it would be running at a higher privilege level than regular apps, that opens up a new attack vector for web based exploits to use.

2. Such software would potentially slow the OS down and cause a significant battery drain for no real gain of protection.

Much has been made about FUD articles that say that other apps can access contacts without asking for permission. No shit sherlock. That is a "feature" of the official API and the app approval process is supposed to ferret out nefarious uses of contact lists. I would hate to see UAC style boxes for apps each time I wanted to see a contact list in a third party app.