Ask Slashdot: Most Secure Mobile OS?

Lexta writes "So I'm contemplating my next smartphone purchase, and I've been a little put off by all of the security exploits posted on Slashdot over the last few months, particularly for Android. So, what's the most secure stock standard (not jailbroken) mobile OS?"

The Most Secure Mobile OS

[MasterMan]

Both Android and iOS have been plagued with exploits. Android has tons of trojans, while iOS has remote exploits (most of those iPhone jail breaking methods are based on remote root exploits). The only current smartphone OS that is safe against exploits and vulnerabilities is Windows Phone 7. Microsoft has really improved their security within the last 5 years - even on the desktop Windows most exploits are against third party apps like Flash or Java, not Windows itself.

So, if you want to get a smartphone that is safe against exploits and malware, Windows Phone 7 is your only answer. I would suggest some of the Nokia phones - people have been really happy with them.

Re:The Most Secure Mobile OS

[mhh91]

You'll be sacrificing the availability of tons of apps if you go with WP7 though.

Re:The Most Secure Mobile OS

This is true for the same reasons that a decade ago Mac OSX was considered more secure than Windows. Its a function of install base. As soon as Windows Phone has 100's of million of users exploits will be published.

Re:The Most Secure Mobile OS

[MasterMan]

This is true for the same reasons that a decade ago Mac OSX was considered more secure than Windows. Its a function of install base. As soon as Windows Phone has 100's of million of users exploits will be published.

You mean Linux itself isn't better security wise either, it's just that the (desktop) market share is so low?

Re:The Most Secure Mobile OS

[IamTheRealMike]

A lot of the Android "trojans" are little more than apps which declare what they'll do up front and then do them. I'm not sure that counts as exploits.

Re:The Most Secure Mobile OS

[Bert64]

Don't MS often complain that windows is only perceived as insecure because its ubiquitous and therefore commonly targeted, and that other systems only appear more secure because noone bothers to target a small marketshare...

Surely then, the same applies to windows phone, it has a tiny marketshare and therefore very few people are interested in attacking it.

Also worth noting, windows phone has a tiny market share period... Linux only has a tiny share on the desktop, its big in servers, supercomputers, embedded etc.

The windows phone kernel is based on windows ce, which is inherently a single user os, im fairly sure that once you get down to it, the system is considerably less secure than android or ios, both of which are based on tried and tested multiuser kernels.

Re:The Most Secure Mobile OS

[Reapman]

To be honest, the reason I feel that you see less exploits for Win7 Phones over iOS or Android is it's newer and has a MUCH smaller user base. Security through Obscurity. Assuming Win7 EVER breaks through, I expect to see more and more exploits / security issues for it as well.

Want a secure Mobile OS? Start with the user. Don't install a ton of apps, verify the permissions (if viewable) it is requesting is in line with what the app actually does (sending text is fine if it's a texting app, not so fine if it's some Wallpaper app, ugh), and go from there.

Look into those phones that run 2 OS's - one for "Work" (or Secure) and one for "Home" (or Play).

BTW - I've ran Palm, iOS and Android phones, never had an exploit on either. In both cases I chalk that up to luck and not being an idiot with installing stuff.

Re:The Most Secure Mobile OS

[errandum]

Your argument is flawed for the same reason that people say macs are more secure than pc's.

Just because something is not popular enough to attract attention (and btw, it was rooted not long after it was released, which in turn prompted microsoft to offer a legit way to do it), doesn't mean it is more secure.

Android and iOS are victims to their popularity. On the other hand, BB handsets are, by design, extremely secure. Weird that you did not mention that.

Re:The Most Secure Mobile OS

[oakgrove]

So, if you want to get a smartphone that is safe against exploits and malware, Windows Phone 7 is your only answer.

On the contrary, wp7 lack of exploits probably has more to do with its lack of market penetration than anything else. I would go with Blackberry if security was my main criteria as it has sizable share and has been on the market long enough and in enough users hands to prove itself.

Re:The Most Secure Mobile OS

[Sir_Sri]

If you're talking purely from a security perspective then you can't count RIM out of the picture either. The blackberry ecosystem is pretty robust at the consumer and business level as well.

AFAIK though, the only NSA certed phones for 'top secret' communications are stuff by general dynamics, ratheon and lockheed and you're looking 3k for that kinda phone, assuming you can even get one as a civi. I know there's a sepctra phone that runs an old windows phone software version, but I don't know if they have a new version.

In general dynamics parlance these are (SCIP)-compliant devices (that's for secure communications interoperability protocol).

Re:The Most Secure Mobile OS

[lennier1]

Most stuff is somewhat safer due to its origins and decisions shaped by those origins, but it's certainly not 100% safe either.

Re:The Most Secure Mobile OS

[errandum]

No, what he means is that it hasn't been put to the test yet. The argument "there are no exploits yet so it is more secure" is a flawed one because it doesn't look at the big picture. Macs also claimed they were more secure than PC's - they weren't. Windows architecture is actually more secure than the macs.

Re:The Most Secure Mobile OS

[oakgrove]

You mean Linux itself isn't better security wise either, it's just that the (desktop) market share is so low?

Linux has a total install base in the hundreds of millions on various types of computers from embedded to smartphones to desktops to servers to supercomputers. Saying it has a "small" market share is extremely disingenuous.

Re:The Most Secure Mobile OS

[Bert64]

Linux desktop market share is tiny, but Linux market share as a whole (embedded, supercomputers, servers, phones etc) is pretty high.

Servers and supercomputers especially are high value targets, very attractive for hackers so there is considerable effort made to find vulnerabilities in linux. A 24/7 server on a high speed (full duplex) connection is far more useful for a hacker than a desktop connected to a typical end user connection with limited upstream bandwidth.

Windows phone 7 only exists in one market, and its share of that is miniscule.

Re:The Most Secure Mobile OS

[cpu6502]

Good question. Isn't Android a linux OS? Why does it have exploits then? (puzzled).

Well nobody's hacked my phone because my phone is dumb. It makes calls & accepts texts, and that's about it. It's a Nokia "Shorty OS"

Re:The Most Secure Mobile OS

[binarylarry]

It's hard to exploit phones that are in shrink wrapped boxes on the store shelves.

Re:The Most Secure Mobile OS

[oakgrove]

How many unpatched remote exploits exist for Android vs the competition? When you have physical access to the device all bets are off no matter what OS is on it.

Re:The Most Secure Mobile OS

[PhilHibbs]

But for hacker targets, particularly phishing or personal data theft which the submitter is probably concerned about, desktop market share is the important metric.

Re:The Most Secure Mobile OS

[oakgrove]

I assumed it was obvious that I wasn't responding to the submitter. If I had been I would have suggested a Blackberry if security is the overriding concern.

Re:The Most Secure Mobile OS

[PhilHibbs]

Android may use the Linux kernel, but it isn't kernel exploits that are the main concern, it's app API exploits.

Re:The Most Secure Mobile OS

"Both Android and iOS have been plagued with exploits."

no, just the first mobile os you mention IS PLAGUED by exploits, while the second one NEVER WAS. the few exploits that have been found in ios (very, very small number) has been used to jailbreak ios only. there is currently not a single piece of malware that affects the non-jailbroken ios. and yes, everyone knows why this is the case, everyone knows the "freedom vs walled garden" arguments, but it doesn't change the reality of the situation.

Re:The Most Secure Mobile OS

[icebike]

Android has tons of trojans, while iOS has remote exploits (most of those iPhone jail breaking methods are based on remote root exploits).

Wrong on both counts.

IOS jailbreaks are based on LOCAL root exploits. You have to have it in hand to jailbreak it. There is no drive-by jailbreak available.

Android Trojans might be found in dodgy third party app sites, but are quickly squashed in the Android Market (now called Google Play after one of the dumbest re-names in memory). Each Android app specifically tells you what permissions (data access, phone functions) it wants to use before it installs.

(There are rumors that development is already underway to block apps from using certain permissions even if they do declare them, offering users a finer grained control.).

If you want to be safe, you install only from Itunes, Android Market, Amazon Market, and a couple of other well trusted app market places. There is never a need for a newbie to run off and install from some web site, or root their phone.

As for Windows Phone, who knows, because it simply is too small to attract any significant attention at this point. Given Microsoft's history of OS vulnerabilities you have to be a true believer to assume their new found religion of security is believable.

Re:The Most Secure Mobile OS

[MasterMan]

It's the dancing pigs problem. Most Linux users know what they are doing and don't run random executables off the internet. If Linux had the same market share, it would have the same problems as Windows. Just look at what has recently happened with Mac OS X - as the market share increased, it started getting trojans too. True exploits against OS are rare now a days. The most exploited factor is between the screen and chair.

And no, repositories on Linux wouldn't solve this problem. If Linux had the market share, there would need to be a way to install programs and games from other than the distro repos. Such system works fine for servers and small amount of geeks who use Linux on desktop, but on large scale it doesn't work. Even most FOSS people are actually against this model - just look at the "walled garden" comments against iOS and WP7 on Slashdot.

Re:The Most Secure Mobile OS

[W2k]

Not really true anymore. I've had a Lumia 800 since november and the only two things I'm really missing now is a native app for Google+ (though the mobile web version works fine) and something that can talk to the OBD2 Bluetooth dongle I have for my car. Not exactly your Angry Birds of smartphone apps. Also, a lot of the WP7 apps feel more polished than their Android versions. The Facebook app for instance.

Re:The Most Secure Mobile OS

[carlhaagen]

"Both Android and iOS have been plagued with exploits"
"The only current smartphone OS that is safe against exploits and vulnerabilities is Windows Phone 7"
"even on the desktop Windows most exploits are against third party apps like Flash or Java, not Windows itself"
"if you want to get a smartphone that is safe against exploits and malware, Windows Phone 7 is your only answer"

You have absolutely no idea what you're writing, do you? I'm amazed this got upvoted 5 points and labelled Informative.

Re:The Most Secure Mobile OS

[bgman]

At first I thought this was intended to be funny. For years I've been reading the comment that the reason linux is more secure than windows is due to market share. Malware is directed to the dominant operating systems. If linux had the market share that windows has, then linux would have just a many viruses. What kind of market share does windows phone have? While I only know 2 people with windows phones, neither is happy. Buggy and no apps is the only way to describe their experience. The whole idea of someone describing software from microsoft as "safe against exploits and malware" is ludicrous. Microsoft does a lot of things really well - unfortunately, none of them are writing safe and secure software.

Re:The Most Secure Mobile OS

[MasterMan]

IOS jailbreaks are based on LOCAL root exploits. You have to have it in hand to jailbreak it. There is no drive-by jailbreak available.

For years all that was needed to jailbreak iOS was just visiting a website. Those websites remotely exploited Safari and iOS to gain root access and jailbreak the phone. The same exploits work for malware too.

Re:The Most Secure Mobile OS

[Patch86]

Are we not playing "security by obscurity" again? The old argument was that Macs were immune to viruses- when in actuallity it was just that teh Mac marke tshare was too small to attract a healthy ecosystem of malware. As the market share grew, so did the number of exploits.

With Windows Phone 7 market share still in the low single digits, it's no surprise that malware isn't prevalent. If the market share ever increases, you'd expect malware to increase too.

Note that I'm not claiming that the security in WP7 is any better or any worse than Android or iOS- for all I know you're right, and WP7 is amazing. All I'm saying is that counting exploits isn't a decent measure on its own.

Re:The Most Secure Mobile OS

You have absolutely no idea what you're writing, do you? I'm amazed this got upvoted 5 points and labelled Informative.

You're amazed that a first post paste job praising MS and disparaging their competitors got modded to +5 almost immediately on Slashdot? You haven't been paying attention.

Re:The Most Secure Mobile OS

[Higgins_Boson]

The Facebook app on windows mobile is awful. Not sure how you can say it feels more polished. Hell, if it IS more polished, it must have been polished with a used sanitary napkin and some diarrhea, because I am not seeing this glowing bastion of Facebook goodness you seem to see. On my windows phone.

Re:The Most Secure Mobile OS

[AliasMarlowe]

I've had a Lumia 800 since november and the only two things I'm really missing now is a native app for Google+ (though the mobile web version works fine) and something that can talk to the OBD2 Bluetooth dongle I have for my car.

If you want a secure phone and want it to be from Nokia, then try the Nokia N9. It's a charm, in countries where it's available (yes for Australia, Finland, Italy, Sweden, etc. but not for USA, UK, Canada, Germany, Japan, etc.).

Re:The Most Secure Mobile OS

[dc29A]

Wrong on both counts.

IOS jailbreaks are based on LOCAL root exploits. You have to have it in hand to jailbreak it. There is no drive-by jailbreak available.

ORLY? The most popular jailbreak exploits were simply something like downloading a malformed PDF file. That is something that can be easily converted into 'drive by'.

Re:The Most Secure Mobile OS

[oakgrove]

True exploits against OS are rare now a days.

This isn't true at all. It's just that there are so many more exploits via trojans OS exploits aren't getting as much press. But that doesn't mean that new ones aren't discovered everyday because they are.

And no, repositories on Linux wouldn't solve this problem. If Linux had the market share, there would need to be a way to install programs and games from other than the distro repos. Such system works fine for servers and small amount of geeks who use Linux on desktop, but on large scale it doesn't work. Even most FOSS people are actually against this model - just look at the "walled garden" comments against iOS and WP7 on Slashdot.

This is pure unsubstantiated sophistry.

Re:The Most Secure Mobile OS

[geminidomino]

Most of the malware I've seen on my android phone is in the form of apps that leak my phone ID and phone number (apparently only vaguely alluded to in the 'Phone Calls' permission as 'identity').

What REALLY pisses me off is that not only does app I paid for do this, but it somehow self-cripples if I fix it with Privacy Blocker, and the devs had the brass to say in the comments that it doesn't do it.

The app in question is EzPDF, btw. Since my only recourse is to leave them a crap rating and look for a new PDF reader, I'm doing that, but it still pisses me off, especially since I was recommending it for awhile.

Re:The Most Secure Mobile OS

[SiChemist]

Came here to say this. You can't prevent dumb people from installing malware voluntarily no matter what the OS. When install tells you exactly what the software can do, it's ridiculous to blame the OS for what the software then does.

Re:The Most Secure Mobile OS

[airdweller]

Windows is recommended for security. I think I died and went to heaven.

Re:The Most Secure Mobile OS

[airdweller]

"Windows architecture is actually more secure than the macs."
Seriously?

No, seriously?!

Re:The Most Secure Mobile OS

[ColdWetDog]

Certainly. Would you want a building made out of windows, or one made out of hamburgers?

Come on, this is easy!

Re:The Most Secure Mobile OS

[rjgii]

(There are rumors that development is already underway to block apps from using certain permissions even if they do declare them, offering users a finer grained control.).

CyanogenMod has this.

Re:The Most Secure Mobile OS

[amRadioHed]

Servers and supercomputers especially are high value targets, very attractive for hackers so there is considerable effort made to find vulnerabilities in linux. A 24/7 server on a high speed (full duplex) connection is far more useful for a hacker than a desktop connected to a typical end user connection with limited upstream bandwidth.

Certainly it's true that a high performance server is more useful then a desktop system, but is it more useful then a botnet of thousands of desktop machines? The desktop eco-system contains so much low-lying fruit it seems unlikely faster, but more secure and better maintained servers would ever be worth the effort.

Re:The Most Secure Mobile OS

[oakgrove]

That has more to do with the fact that Linux isn't targeted with malware like Windows is. If that situation changes you can expect things like AppArmor and SELinux to be made default about 5 minutes later. The technology to make Linux extremely secure is built in it's just a matter of the situation warranting people bothering to flick the switch and so far it hasn't been necessary.

Re:The Most Secure Mobile OS

[rwven]

Do you have the latest version? I've got it and it's not bad at all. The interface is great. The only complaint is the confusing lack of any kind of push notifications...

Re:The Most Secure Mobile OS

[errandum]

yes: http://www.infoworld.com/t/hacking/apple-security-under-attack-the-view-windows-169586

Re:The Most Secure Mobile OS

[rwven]

It's still kinda true... The WP7 versions of apps are mostly inferior to their iOS/Android alternatives. There are also several key apps still missing that have some poor quality third party alternatives... (Pandora, Linkedin, I'm looking at you.)

Re:The Most Secure Mobile OS

[DJRumpy]

Most trojans don't state "I'm asking for access to your contacts so I can sell your address to Russian spammers". They ask if they can 'access you contacts".

Claiming the malware affecting Android somehow warns people up front as to exactly what it's going to do is disingeneous. It warns what areas it will access, but not what the intent is, and for a non-technical person, that equates to rather pointless information.

Re:The Most Secure Mobile OS

[airdweller]

First, I think Fedora (e.g. KDE) will be still more secure than W7 (e.g. Konqueror has AdBlock built-in). No experience with MintOS, but I'd take any Linux distro any day over Windows.
Second, Windows is now more secure than before b/c of all the security features/paradigms that were 'inspired' by Unix/Linux/BSD/etc.

Re:The Most Secure Mobile OS

[toadlife]

Don't MS often complain that windows is only perceived as insecure because its ubiquitous and therefore commonly targeted, and that other systems only appear more secure because noone bothers to target a small marketshare...

Yes.

Surely then, the same applies to windows phone, it has a tiny marketshare and therefore very few people are interested in attacking it.

Yes.

The windows phone kernel is based on windows ce, which is inherently a single user os, im fairly sure that once you get down to it, the system is considerably less secure than android or ios, both of which are based on tried and tested multiuser kernels.

Not sure what single vs multiuser would have to do with overall device security since on the Android side none of the security issues we've seen have anything to do with the kernel. Why would you compare the kernel the Windows Phone platform with the userland of Android?

A quick search shows that Microsoft is not using the user model of security in Windows Phone 7 at all.

Re:The Most Secure Mobile OS

[airdweller]

First, Macs _ARE_ pcs. You probably meant 'Windows'.
Second, OSX (as well as any Unix clone) is indeed more secure than Windows by design. MS is getting there, but very slowly.

Re:The Most Secure Mobile OS

[icebike]

To be honest, the reason I feel that you see less exploits for Win7 Phones over iOS or Android is it's newer and has a MUCH smaller user base. Security through Obscurity.

Ah, I see you've been drinking the Microsoft Koolaid.

There is no such thing as security through Obscurity.

Other OSs achieve better security by DESIGN, not by being obscure. Microsoft hides its source code, and always has. Yet for decades it was the least secure OS in the world. Virtually all flavors of 'Nix publish their source code openly, and yet they are the most secure.

Please just stop with this "Its hacked because its popular" nonsense.

Re:The Most Secure Mobile OS

[airdweller]

Mod this up pls. The GPP's first assertion is outright wrong.

Re:The Most Secure Mobile OS

[semi-extrinsic]

If Linux had the market share, there would need to be a way to install programs and games from other than the distro repos.

You mean like, say, `./configure; make; sudo make install` ? Or maybe `python setup.py install`? Or even converting .deb to .rpm with alien?
Sure, there are no gui frontends, but if that was a popular request, Nautilus and other file managers would quickly gain support for just double-clicking stuff to install.
TL;DR: Troll harder.

Re:The Most Secure Mobile OS

[bhcompy]

And which do you protect better from outside the server itself? I don't see too many supercomputers with direct access to the public web. Servers are always behind the strictest of network security rules, with front end proxies optimally being the only communication between the real server and the outside network. On the other hand, desktops have considerably less security from an infrastructure perspective on average.

Re:The Most Secure Mobile OS

[DrXym]

There are numerous faults with WP7.5 but the main one is lack of multitasking. One app is active at any time. Other apps get put to sleep with EXTREMELY limited means to do background tasks like checking email. Maybe for the most part this isnt a big deal but it means any app which sits in the background, e.g. instant messaging, twitter etc. is gimped on WP7.5. For example Skype only works when its in the foreground. If you expect to be able to receive calls then tough you can't.

That's not the only issue by a long stretch but it's the most serious. I'd say the lack of a C/C++ toolchain or Java runtime for that matter is another serious impediment to developer uptake. It means if you're porting an app from another platform you're looking at writing from scratch.

Re:The Most Secure Mobile OS

[semi-extrinsic]

something that can talk to the OBD2 Bluetooth dongle I have for my car. Not exactly your Angry Birds of smartphone apps.

You mean something like Torque on Android, with over 10^6 installs? Or Garmin Mechanic, with around 2*10^5 installs? There are hundreds of these apps on Android, and it is fair to say they are very popular. If WP7 lacks such apps, then either WP7 has few developers, or it is a pain in the **s developing a WP7 app that makes the phone interface with something else. Or knowing MS, it could be both of the above.

Re:The Most Secure Mobile OS

[__aasehi2499]

Do you have the latest version? I've got it and it's not bad at all. The interface is great. The only complaint is the confusing lack of any kind of push notifications...

Agreed, the latest update brought the app to point where you can do all you would want to from a mobile setting. I don't have any problem with the push notifications, the toast and tile counts work for me.

Re:The Most Secure Mobile OS

[airdweller]

Sniffing on an enterprise network. A great proof of OSX being insecure :) I'm not sure I can trust the rest of the article that starts like this. And I actually happen to dislike OSX strongly.

Re:The Most Secure Mobile OS

[Baloo+Uriza]

Android Trojans might be found in dodgy third party app sites, but are quickly squashed in the Android Market (now called Google Play after one of the dumbest re-names in memory).

Clearly you weren't around during the .com bust when KPMG was renaming itself to something stupid every eighteen minutes. Or missed the rapidfire Pacific Northwest Bell > US West > Qwest > CenturyLink stupidity.

Re:The Most Secure Mobile OS

[Reapman]

Microsoft Koolaid? Maybe you misunderstood me. I'm saying that the parent is wrong to say Windows 7 is more secure, it just hasn't been proven yet. Yes.. I'm attacking Microsoft by defending Microsoft. That's a new one.

Security through Obscurity DOES in fact exist. It's a crappy method, and unadvisable, but it exists. Are there vulnerabilities? Sure, there's just less people looking for them.

Re:The Most Secure Mobile OS

[W2k]

Strange, I seem to have no trouble receiving mail while I'm doing other things on my WP7. Perhaps because the "extremely limited means" are actually quite sufficient. I believe limiting multitasking a bit is a tradeoff for better battery life, and that's certainly fine by me. Apps like navigation and music players (Spotify, Nokia Music) seem to have no trouble whatsoever with me switching to a different app and back. The web browser dutifully remembers which tabs I had open. So no, not a big deal at all. The Skype limitation I believe is a beta issue.

C/C++ support is probably coming eventually but - are you kidding me? Lack of a Java runtime an impediment? C# is by far a nicer language to program in, and is instantly accessible to any Java developer (being basically Java++ by design). Lack of Java support doesn't seem to have particularly hurt Apple in their quest for global mobile domination. The only possible use I can see for Java on WP7 would be to make porting of Android apps easier but they would feel right out of place on WP7 anyway since it has a very different UI.

Re:The Most Secure Mobile OS

[icebike]

Maybe I wasn't around then, because I stole this slashdot ID from a dead guy found frozen in a snowbank somewhere who died before you were born?

Re:The Most Secure Mobile OS

[kevinroyalty]

I have the app Tango on my WP7.5 and am able to receive calls when the app isn't the focus.

Re:The Most Secure Mobile OS

[judo_badger]

The fun thing about those exploits are that Apple patched them pretty darn quickly (for current versions of iOS). How often do carriers/manufacturers put out security patches for Android devices? That's a serious question -- I'm really curious, 'cause that's the biggest single issue with Android security in my opinion and I would *love* to be wrong.

Re:The Most Secure Mobile OS

[quacking+duck]

Note that it's only available for iOS v4.2.6 through 4.3.3.

There are certainly older iPhones out there still running those versions, but new iPhones are all at v5.x which require physical access to the device to jailbreak.

Re:The Most Secure Mobile OS

[Hatta]

That reminds me of the definition of a magician. Someone who tells you up front that he's going to lie to you, and then does.

Re:The Most Secure Mobile OS

[ninjacut]

Surprised to see pro Windows comment on Slasdot, so there are rational evaluaters on this forum as well. My experience with Windows Phone has been great, started with Samsung Focus and now Focus S. The OS and UI are nice, fluid and top performing and have not seen any application limitations .. plenty to choose from. It will be difficult to move to other phone, once you get used to Metro

Re:The Most Secure Mobile OS

[DrXym]

Skype calls? No you can't unless something has changed in the beta released a week ago and now.

Re:The Most Secure Mobile OS

[mckillnm]

I'll second the N9.. A great phone! (had a N900 before). Eco-system is small, but that may not be a problem as there is less sh1t to download!

Re:The Most Secure Mobile OS

[Bert64]

Windows "security features" are more theatre than anything else...
A someone who has conducted penetration tests against lots of networks, most of which were windows based, its pretty trivial to bypass pretty much all of these "security features" you talk about.

The vast majority of companies operate on the idea that people inside are trusted, while the external firewall provides the sole line of protection, so the vast majority of the windows services are hidden away from the outside. Of course this all breaks down very badly if someone malicious gets inside.

Those IT departments generally have no knowledge of anything other than windows, and have a fear of the unknown.

Re:The Most Secure Mobile OS

[toadlife]

Second, OSX (as well as any Unix clone) is indeed more secure than Windows by design

How? What security framework does OSX have that Windows doesn't - and for that matter that Windows didn't have first?

Re:The Most Secure Mobile OS

[DrXym]

Apps are allowed to run one background activity every 30 minutes and there are strict limits on how long this activty may run for or how many are entitled to be active. You can't pretend that is even remotely adequate for any kind of IM, email or Twitter type application. And you say tradeoff on battery life but I've yet to see a Windows Phone make good on battery. It's certainly not true for my Lumia 800 which sucks power and runs down faster than a 2 year old Android handset I have.

And yes lack of C/C++ and/or Java hurts. If I have an Android or iPhone app. My choices for porting that app to WP7.5 are not pretty - either port and maintain a virtually analogous app in .NET with double the overheads or go to the lowest common denominator such as Phonegap. Windows Phone is completely the odd one out. At least if I want platform parity in Android / iPhone I can drop to C/C++ for most of the stuff and rely on OpenGL ES too. In Windows Phone you get nothing apart from some lame porting guides. If C/C++ were there at least it might allow someone to recompile Dalvik and some Android APIs to WP but not even that is a possibility.

Re:The Most Secure Mobile OS

[Rasperin]

The C# libraries for windows mobile development (particularly XNA 4.0) are absolutely wonderful. But C# = Java6 anyone whose developed in both (they both have there differing points, yes, but are essentially the same language) can recognize that.

Re:The Most Secure Mobile OS

[W2k]

E-mail uses push notifications, you make it sound like it's on a 30 minute polling interval but that's simply not the case - it's nearly instant, certainly every bit as fast as on Android. Twitter does the same thing. Just read the documentation if you don't want to take my word for it. Using polling for any kind of instant messaging is not something you want to do since it's massively inefficient, much better to let the server tell you when there's something new to fetch.

As for porting, what you are describing is the same on every platform. You have an iOS app and want to port it to Android? Better brush up on those Java skills because your ObjC is worthless there. You can theoretically use C/C++ as a lowest common denominator between the two but almost nobody does that except possibly for some very core functionality and then you have to write a ton of platform-specific wrappers for the device-dependent stuff anyway. Oh and the UI, which is probably the most time-consuming single part of your app if you want to get it right.

I will give you this - being the minority platform, WP7 certainly stands more to lose from not sharing a common language with Android/iOS than the other way around. I don't really want WP7 apps that are just least-effort ports of Android apps though, and if you're as concerned about battery life as you say then you should find the thought of porting over a big fat VM just to run a few more apps abhorrent. It's not like porting is that hard, and unlike Android, WP7 is actually fun to code for. I've put one app on the market already and am working on a second. Never could muster up the energy to do that for Android, well not on my spare time anyway, there's just too much pomp and ceremony required to get anything done. I do code for Android at work though, since they're paying me well to put up with it. :)

Re:The Most Secure Mobile OS

[Bert64]

In my world (I'm a principal security architect for Microsoft)

So hardly an unbiased view...

Yes, Macs do have far more software vulnerabilities than Windows computers. If you don't believe me, go to any vulnerability database (I like Secunia's advisory database) and compare any operating system or application from Apple and Microsoft, head to head, over the same time period during the last five years.

Can't really do that, Secunia has a "Mac OSX" category, while Windows is separated according to version.
On the other hand, if you compare OSX (all versions) for 2011 to Windows 7 for 2011 you get:

http://secunia.com/advisories/product/96/?task=statistics_2011
http://secunia.com/advisories/product/27467/?task=statistics_2011

39 advisories for windows 7, vs 8 for OSX..
0% extremely critical for OSX, 3% for windows
Although OSX declares that 13% are unpatched, the unpatched one is a DoS in the mail application.

2010 paints the same picture, 47 vs 12, criticals for windows none for osx, one low severity dos vulnerability unpatched in osx.

I think this qualifies as head to head over the same time period during the last five years... Tho i'm not convinced that counting advisories is a valid comparison.

Among the leading OS vendors, Apple has been the last to implement nearly every important security protection. Apple was last to implement anti-buffer-overflow memory protections. Apple was the last to implement address space layout randomization (ASLR). Apple was the last leading operating system vendor to offer full disk encryption (in the recently released Mac OS X Lion).

Microsoft were also very late to the party on this, most of these protections originated in Linux or OpenBSD...

Apple is also typically the last among these vendors to patch software bugs, sometimes months after they become publicly known.

This is an inherent problem with closed source code, and microsoft are often just as bad as apple... Plenty of ms vulnerabilities go unpatched for months after people have been actively exploiting them in the wild.

And it came as no surprise when Dmitry Sumin, president of Password Inc., told me last week that Apple's Mac OS X Lion was the only popular operating system to store login passwords in plain text in memory.

Not good, but then windows stores passwords in memory in a hashed form, while simultaneously allowing authentication using the hash instead of the plaintext (google for pass the hash if you don`t believe me)... Therefore, the hash is the equivalent of plaintext, and is arguably even worse because it creates a false impression of security.

Re:The Most Secure Mobile OS

[Bert64]

Most Linux users don't even realise they are using Linux... Linux runs on my TV, and it's hardly an exotic model.

Repositories on Linux are a very sensible model... Most users have no need to go outside of them, and they get users out of the bad habit of running arbitrary binaries from random sources. Look at phones, it is only geeks that want to go outside of the repository, everyone else is perfectly happy.

Exploiting the user becomes harder if the user doesn't have the ability or the habit to execute arbitrary binaries by default. If someone is used to installing packages from the repository, they are going to find it strange if someone tells them to download and run a binary. On the other hand, downloading and running binaries is the default way of installing software on windows.

Walled gardens are actually a sensible approach for 99% of users who have no desire to learn anything about the machines. On the other hand, there needs to be flexibility for those of us who want it... Computers that actively discourage users are extremely detrimental to youngsters looking to learn... Kids need computers like the old C64 etc, where users are encouraged to experiment and cant break the system.

Re:The Most Secure Mobile OS

[Bert64]

There are plenty of supercomputers with direct internet access, or at least the control node (of a large cluster) will even if the individual nodes will be on internal addresses. Quite a few of the top500 list of supercomputers are used for academic research, and they generally collaborate with institutions around the world so having the system accessible on the internet is required.

Servers also, are often accessible on the internet in one form or another because they need to be, they are servers after all... Imagine a web server where the http service was not accessible, it would be completely useless. Desktops on the other hand have no reason to be running any listening services at all, since they arent generally intended to be used remotely.

Re:The Most Secure Mobile OS

[Em+Adespoton]

Your argument is flawed for the same reason that people say macs are more secure than pc's.

Just because something is not popular enough to attract attention (and btw, it was rooted not long after it was released, which in turn prompted microsoft to offer a legit way to do it), doesn't mean it is more secure.

Android and iOS are victims to their popularity. On the other hand, BB handsets are, by design, extremely secure. Weird that you did not mention that.

[citation needed]
BB handsets are completely closed, and critical exploits have been found for them. The only open part of the BB walled garden is the QNX underpinnings, which have their own issues and exploits.

While the BB ecosystem is more manageable from an IT viewpoint, there is no proof that it is more secure from determined outside (or inside) attack. Just harder to mess up the security configurations, and you need to attack RIM's servers as well as the target company's servers.

Re:The Most Secure Mobile OS

[dreemernj]

IM, email and Twitter type applications are bad examples because they would probably be using push notifications instead of an app running in the background. It's the only way on iOS. It sounds like it's the only way on Windows Phone. And Google made it an option for Android when they added C2DM in Android 2.2 and I would be annoyed if an IM or email app opted for a background service instead of push notification on my Android phone.

Re:The Most Secure Mobile OS

[Bert64]

Default windows install still has ports 445, 135, 139 open by default (even if they encourage you to hide them behind a firewall - a kludge at best)...
Default linux install has nothing open, you have to explicitly install SSH on most desktop oriented distros.

Linux has a repository from which to install software, while windows encourages users to download and run arbitrary binaries.

Windows has things like stack randomization and non executable pages, but so does linux and has done for much longer.

Windows uses file extensions to identify file types, and hides them by default, making social engineering attacks more likely (nude_girl.jpg.exe !), on windows simply downloading a file which has a name ending in .exe makes it executable, whereas on linux you require an additional step.

Windows has a lot of "security features", but a lot of them are pure theatre and do little or nothing to actually improve security...
Take group policy "folder restrictions" for instance, designed to prevent you browsing certain areas of the filesystem (eg the windows dir, or the root of the hd), and sure enough if you type c:\ into explorer you will get an error... But what if you open a subdir (eg browse the temporary internet files dir using the option within the ie settings), and then keep hitting the up option... Also you can bypass these restrictions by using a program that doesn't use the standard explorer file selection dialogs (eg a command prompt)...
Linux doesnt have "features" like these because they are pointless, if you want to prevent users from accessing a given area you need to use file permissions.

There are plenty more examples like this, of "features" that look good on paper, but in reality provide no benefit and are easily circumvented anyway.
Things like this generally exist for shallow reviews, and security certification checklists, where the presence of an explicit feature gives you a tick in the box and the certification/review is not in depth enough to verify it properly.

Re:The Most Secure Mobile OS

[errandum]

Already put a link in this thread. In terms of security features, windows has been lightyears ahead of OS X since the beggining, you just don't notice it because it is constantly under attack. But it feature by feature, windows is ahead.

Re:The Most Secure Mobile OS

[errandum]

See the quotes. Independent contractors also verify this.

I happen to own a MBP and I love OS X. But I'm also not blind. Lots of facts there to entertain anyone.

Re:The Most Secure Mobile OS

[WillKemp]

The Facebook app on windows mobile is awful.

The Facebook app on Android is awful too. It takes forever to start up - assume it's busy uploading all your personal phone data (contacts, text messages, etc) to Facebook, but who knows what it's doing....? Whatever it's doing, i don't want it wasting my time while it does it, so i've downgraded to the distro version - which is really awful.

Re:The Most Secure Mobile OS

[bhcompy]

You're ignoring what I'm getting at. The data that would be worth money/time/effort is still behind a load of security via proxies, reverse proxies, firewalls, ISA servers, etc. Yes, these servers have web access, but they're not direct, unlike personal computers and many corporate workstation environments

Re:The Most Secure Mobile OS

[errandum]

Exploits can be patched (since it is a closed system and rim controls it). RIM also encrypts everything, so it doesn't really matter if you think you have gone past it, only exploit I've found that I've found for a RIM handset (in order to get the info inside) had to do with the backups you store in your pc and not the phones.

Please do show where are those exploitable RIM phones because the secret services of half the world would love to know them.

Re:The Most Secure Mobile OS

[Jerry]

The greatest contribution to Win7's security is their obscurity. Win7phone has less than 2% market share, and falling. Microsoft used to own 15% of the mobile phone market share. To fall to 2% means that even their former customers are leaving their products for what they perceive as better ones.

One of the biggist dismissals Windows fans used on Linux was to say that there weren't many threats to Linux because not many used it. That logic can apply to Win7Phone as well.

Re:The Most Secure Mobile OS

[kangsterizer]

actually that s not true. linux has more options to secure itself, which make more sense too, so "it is" more secure
the thing is, those are rarely enabled/configured

otherwise, its all the same for win/osx/lin they're the same type of OS and kernel.

things like plan9 or singularity are much more secure by design

Re:The Most Secure Mobile OS

[kevinroyalty]

Skype /= Tango

Re:The Most Secure Mobile OS

[Higgins_Boson]

@rwven and @ landofcleve:
Not sure if I have the most recent version or not as I haven't used it in a few weeks now. I will update it and give it another go. Thanks for the heads up.

@morons_who_modded_me_troll:
Learn what a discussion is. Sometimes people use exaggerations and sarcasm to make a point about something they dislike. Just because YOU like something and I do not, and I express that in my views, that does NOT make me a troll.

So go fuck your mother, anonymous moderator.

Re:The Most Secure Mobile OS

[Daniel+Phillips]

The only current smartphone OS that is safe against exploits and vulnerabilities is Windows Phone 7.

Because nobody has bothered? Or perhaps because your bold claim just is not true?

Re:The Most Secure Mobile OS

[LordLimecat]

even if they encourage you to hide them behind a firewall - a kludge at best

Firewalls are a kludge now? And when you say "encourage", you mean that it blocks them all by default?

Linux has a repository from which to install software, while windows encourages users to download and run arbitrary binaries.

I never said Linux doesnt have any cool features that Windows lacks. Repositories on Windows would be awesome. But we're not exactly talking "system security" any more; we're discussing systems of trust and methods of acquiring executable code. On most desktop linux installs (and many server installs) that I've done, I've had to download a .deb or .rpm file or else install a 3rd party repo for some program that wasnt in the base repos. Thats really not much different than downloading an exe from a known trusted site-- I often download files off of nirsoft.net or sysinternals.com or the major vendor sites (firefox, adobe, google, microsoft), and I dont see it as much different than using a repository (in both situations you have to trust that the vendor's server has not been compromised).

Repos on windows ARE the biggest thing on my wishlist, all that said.

Windows has things like stack randomization and non executable pages, but so does linux and has done for much longer.

DEP was enabled in windows apparently about the same time as it was for Linux. I had thought that ASLR was introduced in Windows first and Linux later, but it seems Linux was first there-- though wikipedia notes it was a "weak form" (not really sure what is meant by that).
Its kind of irrelevant though, Im discussing the status NOW. I think this article puts it well--
"I think the question is far more complex right now actually. For example, what constitutes "Linux" or "Windows"? If we're talking only about the kernel, then they're about the same (both extremely secure). They've certainly made different design decisions, but at the end of the day kernel exploits for either OS are extremely rare."

Take group policy "folder restrictions" for instance, designed to prevent you browsing certain areas of the filesystem (eg the windows dir, or the root of the hd), and sure enough if you type c:\ into explorer you will get an error... But what if you open a subdir (eg browse the temporary internet files dir using the option within the ie settings), and then keep hitting the up option..

Microsoft freely admits that that particular GPO (and others like it) are not security options. If you want security for that, use the NTFS "list directory contents" and "traverse folder" ACL settings. I am not aware of analogues for Linux ext3/4, incidentally.

Linux doesnt have "features" like these because they are pointless, if you want to prevent users from accessing a given area you need to use file permissions.

I think there are some rare use cases for that particular GPO: perhaps you prefer to prevent users from seeing that a particular folder exists or what its contents are, but it is necessary that their account have permissions to access those files (for instance, you dont wish them to be able to see or delete temp files, though it is absolutely necessary that their account be able to read / write / execute data in that folder).. At any rate, NTFS has far more granular ACL controls than ext2/3/4, and can easily do what you talk about. And I wouldnt exactly boast about the lack of GPO support; GPOs are IMO one of the most powerful features of Windows. Being able to deploy a policy that says, for example, deny "execute" permission to any file not in C:\Windows and C:\Program Files, or else to publish a whitelist of executable hashes that are permitted to run, is pretty darn powerful.

Re:The Most Secure Mobile OS

[rtfa-troll]

Although the number of iPhone apps is amazing, the limited number of apps is the least of Windows phone's problems. With both my Androids and N900 I got most of what I needed and I've always been able to show off to iPhone people if needed. It's worth reading between the lines of Andrew Orlowski's Lumia 700 review. Remember that he's a total Microsoft Fanboi but even so, he often makes pretty perceptive comments such as the ones about fonts. The key thing is to realise that Windows Phone is designed to look good in the shop, but hasn't actually been designed to work. The terrible battery life and design make a phone you can't actually use properly. Think of tiles for example; about 8-10 fit on a screen where normally you would have 20-25 icons. This is great for display and selling where almost no apps have been installed and you are just learning which are which. Five months down the line, when you have 150-200 apps, it suddenly doesn't seem like a good trade off.

This general trade off of actual functionality for things which sell Microsoft products goes on through the design and brings us straight back to the topic; security. For example: your contacts in a Windows Phone are entirely stored on your online service, almost certainly Facebook unless you change it yourself. By design, there's no private place to store contacts you don't want shared. The first question with security is not "is this implementation done right". The real question is "who is this working for". This same user hostile attitude continues through the DRM implemenaton

When Microsoft sets up something equivalent to the Data Liberation Front, then we will be able to talk about Windows Phone as a secure operating system. Not a day before.

Re:The Most Secure Mobile OS

[izomiac]

If you have a rooted phone and use gingerbread, then try PDroid. It allows you to send a blank, random, or custom value to those applications, which prevents a poorly written application from crashing. It's essentially the same feature that CyanogenMod rejected (IMHO, clearly demonstrating where their loyalties lie).

Re:The Most Secure Mobile OS

[__aasehi2499]

Too be fair, maybe the 'anon mod' was reacting not to your dislike of the something, but rather your colorful potty mouth. It's your right to use it, and I would never say you couldn't, but I also recognize that nothing is without consequences.

Re:The Most Secure Mobile OS

[Hal_Porter]

Slashdot displays you comment like this

Being able to deploy a policy that says, for example, deny "execute" permission to any file not in C:\Windows and C:\Program Files, or else to publish a whitelist of executable hashes that are permitted to run, is pretty darn powerful.

Read the rest of this comment...

And when I click on it, there is no rest of the comment!

Spooky, huh? It's like a Japanese horror film or THEN WHO WAS PHONE or shit.

Re:The Most Secure Mobile OS

[homer_ca]

I vote this one. Yeah, I'm a big /. nerd too, and I'm pretty confident on being able to secure a netbook. I have no freakin' clue on how to secure a mobile platform to the same degree. They're unaccountable black boxes.

Re:The Most Secure Mobile OS

[Hal_Porter]

The people that say there is no malware on iOS are probably posting it from the luxury dacha just outside of Moscow using a platinum plated Macbook Pro. Sitting on a bed made out of huge stacks of dollar bills and kilo bags of cocaine surrounded by dead hookers. All paid for by iOS users stolen credit card details.

Re:The Most Secure Mobile OS

[BasilBrush]

Roger A. Grimes immediately rings a bell as a Microsoft shill, second rate, just behind the first ier of Paul Thurrott and Robert Enderle. But looking in his iog it's worse even than that. He's a Microsoft employee working on security.

What the hell else is he going to say other than Windows is more secure than OSX?

Te weakness of your citation doubly underlines the ludicrousness of your claim.

Re:The Most Secure Mobile OS

[SpaceLifeForm]

Wow, I had forgotten about the winphone.

Re:The Most Secure Mobile OS

[errandum]

it has NOTHING to do with microsoft. Windows, since it has been the target of more threats has been dumping resources to construct a more secure architecture, using every trick in the book.

Apple, on the other hand, has been skimming by due to sheer lack of interest in the platform.

Your argument is akin to US military being weaker than the one from the fiji islands, simply because there have been more attacks to the US. Damn, how I hate ignorant fanboys. And, again, i OWN a macbook pro. Actually, I own a Power G4 macbook, a white macbook, a 13" mbp and a 15" macbook pro. I've also offered a mabook air and advised more than one person to buy mac.

I LOVE OS X. But i know that in terms of architecture, only lion brought features like ASLR or full disk encryption, things that windows has had for years, for example.

Re:The Most Secure Mobile OS

[errandum]

Please do share those tests where mac os X (not linux) beat windows. The whole tests. Please do tell me how can an os that until lion didn't encrypt the whole disk, for example, or didn't have ASLR be more secure those that did.

In terms of architecture, windows has been one step ahead of the mac due to the sheer need of protection to a constant wave of attacks.

And no, companies DO NOT trust those inside. Actually, any first year network security class in university will teach you that YOUR people are your biggest security risk. It doesn't matter if you have 256 byte passwords if they are written under the keyboard. It doesn't matter if you implement a secure WPA2 and firewalled access to your network if an employee will open an ad-hoc connection that provides an entry point. A honeypot can make an employee leak confidential information without even noticing.
No serious sysadmin will trust the users, ever.
  I really want to know where did you conduct your security auditing. Actually, I want to talk to your boss. Or, you're just full of shit.

Re:The Most Secure Mobile OS

[Higgins_Boson]

Ah, so you must be mister anonymous mod.

Potty mouth? I only cursed after I was modded down to troll. Other than that, my language was clean and used every day words to describe my feelings. I did not swear in my original post, so there was no need to moderate it down to troll.

In the case you are NOT actually admitting to modding it down, apologies. But in any case, I was not cursing or swearing or being otherwise offensive toward anyone or anything with the exception of the Windows Mobile Facebook app.

Re:The Most Secure Mobile OS

[__aasehi2499]

it must have been polished with a used sanitary napkin and some diarrhea

There is nothing clean about those words. I couldn't hardly mod it down and participate in the thread at the same time, now could I? On another matter, you keep calling it the Windows Mobile Facebook app, which OS have you been referring to here? Windows Mobile 5.0/6.0/6.1/6.5? or Windows Phone 7? The name Mobile is not applicable to Windows Phone 7.

Re:The Most Secure Mobile OS

[mjwx]

This is true for the same reasons that a decade ago Mac OSX was considered more secure than Windows. Its a function of install base. As soon as Windows Phone has 100's of million of users exploits will be published.

You mean Linux itself isn't better security wise either, it's just that the (desktop) market share is so low?

You might have a point if Linux didn't have such a huge share of the Server market.

Back under your bridge.

Re:The Most Secure Mobile OS

[BasilBrush]

Your argument is akin to US military being weaker than the one from the fiji islands, simply because there have been more attacks to the US.

I've made no such argument.

Damn, how I hate ignorant fanboys.

Ah, so it's the "fanboy"'s fault that you are quoting stuff from a shill who works for Microsoft.

Re:The Most Secure Mobile OS

[cbhacking]

Speaking as somebody with some experience in the underlying security model of WP7, there are a few misconceptions that should be cleared up.

First of all, legacy versions of CE don't have any kind of "multi-user" security. Starting with WP7 (and also in CE7, where the WP7 kernel is somewhere between CE6 and CE7), that's not really true anymore. Apps now have security identifiers (SIDs) that correspond to "accounts" on the phone. I use quotes because these aren't user accounts - it's still a single-user OS - but are better described as "sandbox accounts" or, to use Microsoft's terminology, "chambers". Securable resources on the phone - filesystem, registry, drivers, APIs, and so on - are permitted only to certain chambers.

The major difference betwen the chamber model and the user model is that there's no inheritence of permissions. On a multi-user OS (NT, OS X, Linux, etc.) a high-privilege ("root" for simplicity, though it's actually SYSTEM on NT, for example) process presents a login UI, the user enters their credentials, and the root process then spawns a new process (typically a shell) running with that user's account SID. The shell then spawns additional processes, each of which (by default) inherit the shell's SID. WP7 does things differently. When a user-mode process is created, it is automatically routed to a chamber (SID) determined by the full path of the binary. If the full path isn't found in the policy database (which controls routing, among other things), the CreateProcess call (analogous to fork, very similar to the Win32 CreateProcess call, yes it's a C API, and yes you can call those in WP7 apps if you know how) will fail with an error indicating that the policy for that program can't be found.

When WP7 apps are installed, a new very-low-permission account is created. This account is created in the "Least Privileged Chamber" (LPC) group, which provides some default permissions:
Read-only access to the Windows folder (for system resources).
Read-only access to parts of the registry (for things like the current theme color, file associations, and so on).
Access to a few basic devices, like the display.
The new account then also receives additional permissions that are determined by the app's manifest:
Read-only access to the app's unique install folder (path includes a GUID used to ID the app).
Read-write access to the app's IsolatedStorage folder (also includes the GUID).
Access to additional devices, locations, and APIs depending on the "capabilities" specified in the manifest:
ID_CAP_NETWORKING - socket APIs.
ID_CAP_FILEVIEWER - read/write the temp folder where downloaded files go.
ID_CAP_IDENTITY_USER - get a unique ID that corresponds to the user's Windows Live account (one-way mapping).
ID_CAP_SENSORS - access the accelerometer and gyro and such.
and so on.

Of course, none of this really answers the OP's question, which is "how secure is WP7?" To that, I can't give a good answer. There are a number of known but minor security holes in the design - for example, the LPC registry read permissions are fairly permissive - but it requires explicit permission from Microsoft to use native APIs at all (in a Marketplace app; homebrew apps use them all the time), and there are no managed APIs for things like registry access. There are also certainly true security vulnerabilities in the phone - one of Samsung's drivers had a buffer overflow that could be used for EoP by any app that could access the driver (ID_CAP_INTEROPSERVICES, which was subsequently restricted from use by homebrew apps), for example - but if there's one thing Microsoft has learned from all its years of being the security community's puching bag, it's that secure APIs, security code review, and pen-testing are all very important. Their record has been much better the last few years.

Re:The Most Secure Mobile OS

[cbhacking]

FYI, WP7 was not "rooted" immediately after release. All that happened (I assume you're referring to the ChevronWP7 Unlocker hack, here) was a way was found to enble a built-in feature of the OS (sideloading unsigned applications, instead of installing them from the Marketplace) without paying Microsoft for the privilege of being able to do this. Developer-unlocking was neither unavailable in the OS, nor gave anywhere close to full permissions. It just cost money.

Now, there are some ways that a sideloaded app can gain permissions which Microsoft tries to prevent. For example, many OEMs shipped drivers with their phones that allow calling a few APIs (such as file access or registry writing) with high permissions. Although sideloaded apps run with the same low permissions as Marketplace apps, a sideloaded app that specifies a certain capability in its manifest can call into those drivers and use them for limited high-privilege access. In response, Microsoft restricted the use of that capability on sideloaded apps (Mango's "interop-lock", named after the relevant ID_CAP_INTEROPSERVICES capability).

Re:The Most Secure Mobile OS

[msobkow]

Out of the box, every service I've installed on Linux listens to 127.0.0.1 (localhost) by default unless otherwise configured.

My former XP partition, on the other hand, was promiscuously listening to unfiltered, open to the public address lists for virtually every piece of software I'd installed that ran as a service. Including a number that had no God-damned business listening to the network in the first place!

Maybe the Windows 7 core is more secure than XP was, but only once was I ever hacked through an XP hole (the font issue a few months back), but I've fended off a number of attackers during the few weeks I had my box hooked up "naked" to the DSL without a firewall.

I hate to say it, but Microsoft is right -- the main security hole with their recent offerings is third party apps.

But that still gives Linux an edge on out-of-the-box security because for whatever reason, Linux versions of software start out configured in "secure" mode and you have to explicitly enable network access to the services.

Re:The Most Secure Mobile OS

[cbhacking]

Actually, there are significant vulnerabilities in the wild for Android. Yes, they're local EOP, but with the way that the Android Market ("Google Play", LOL) is run, any little "super-uber flashlite!" app could also be containing exploit code.

Don't beleive me? Go look around the XDA-Developers forum. Go read about "gaining root" on various Android devices. Android apps don't run as root normally, and it's not supposed to be possible to run third-party code as root. However, if you want to remove the crap that comes pre-installed on many phones, or you want to install a custom OS, you typically need to get root first.

True story: when my roommate wanted to put CyanogenMod (custom ROM) on his Droid, he downloaded a tool to root it (required step). Microsoft Security Essentials initially blocked the download, claiming it contained a known EoP exploit (for Linux).

Just because Linux gets patches quickly doesn't mean it doesn't mean that security vulnerabilities in it don't get found and published. If the phone had been running an up-to-date version of Linux, the exploit wouldn't have worked. On the other hand, if the phone had been receiving updates on the stock ROM, one of the major reasons for rooting it wouldn't have existed...

Re:The Most Secure Mobile OS

[geminidomino]

Apps that do (or, more usefully, DON'T do) things when a phone call is active need it. It didn't have the "make calls" permission.

Re:The Most Secure Mobile OS

[geminidomino]

Oh my... Pdroid looks quite nice. I'll check it out. Thank you.

I completely agree with you about CM, by the way. The only place I'm using it now is on my Nook, since they pretty much stopped working on it when the CM release came out. At least that one doesn't have the phone crap to worry about. :)

Re:The Most Secure Mobile OS

[cbhacking]

Wow, you're wrong (or at least misleading) on a number of points. Let's break them down...

Default Windows installs (for all modern values of "Windows") block those ports at the firewall. There is software listening on them behind the firewall, yes, but the same is true of things like the X11 server on most Linux installs.

There's nothing magical about the security of repositories, they're simply a source you trust for your software. Similar sources exist on Windows too. Access to one of them is even built into the OS (ever wondered why it was called "Add/Remove Programs"?), though nobody short of major coporations seems to use it.

Many Linux distros still do not include strong ASLR, although it has been available on Linux since before it was available on Windows.

The .EXE file extension (or any file extension) is neither sufficient nor required on Windows to make a file executable. Windows includes Execute as a file permission, just like *nix. File extensions are simply used to determine the default action taken when the user requests to "open" a file. That said... you pretty much still win this one, because Windows defaults to setting execute permissions on all files. The only other roadblock is the "mark of the web" which downloaded files get, and cause that "This file could damage your computer!" warning when you try an execute a downloaded file. Linux has no equivalent, but I'm not going to pretend that this feature provides more security than making files non-executable by default.

Windows certainly allows setting file and folder permissions. The group policy you speak of is not how you actually secure a system, it's how you restrict a user experience. Some graphical file managers on Linux hve similar features (hiding the system folders by default and showing you your user folder as the "root" of the filesystem, for example) believe it or not.

Re:The Most Secure Mobile OS

[Bert64]

Default Windows installs (for all modern values of "Windows") block those ports at the firewall. There is software listening on them behind the firewall, yes, but the same is true of things like the X11 server on most Linux installs.

Does this not strike you as stupid?
If you are able to firewall a service off completely and have the system still work then that service is simply not required! If you get any instance in which the firewall fails to operate (windows firewall doesn't run when it believes its connected to a trusted network for instance) then those services are exposed.
Linux does not do the same, X11 for instance is configured without network support on most distributions by default because it is extremely rare that people would use that function.

There's nothing magical about the security of repositories, they're simply a source you trust for your software. Similar sources exist on Windows too. Access to one of them is even built into the OS (ever wondered why it was called "Add/Remove Programs"?), though nobody short of major coporations seems to use it.

Nothing magical perhaps, but they teach better practices. Getting users into the bad habit of downloading and running binaries from random websites is extremely dangerous, and is one of the biggest reasons why social engineering attacks are so often successful.

The group policy you speak of is not how you actually secure a system, it's how you restrict a user experience.

Absolutely, and yet the number of sysadmins who think its a security option and rely on it as such is truly staggering. You may claim that such sysadmins are incompetent, and rightly so, yet windows has always been marketed as not requiring competent (and thus expensive) sysadmins... Putting options like that in, which mislead unskilled admins into a false sense of security is not good design when your product is marketed at such individuals.

Re:The Most Secure Mobile OS

[DrXym]

Push notifications don't solve the problem with since you need active wifi or 3G data for them to work, i.e. if your data is down you don't get a push. The push is also restricted in what data it can send. It's literally a message that says "there's something here" instead of actually delivering it unless it is an extremely short message. I'm not saying push wouldn't be useful but it's not a replacement for letting an app do what it wants to do rather than shoehorning it through a service because it won't work any other way.

Re:The Most Secure Mobile OS

[L4t3r4lu5]

Well nobody's hacked my phone because my phone is dumb. It makes calls & accepts texts, and that's about it. It's a Nokia "Shorty OS"

Check out the SMS of Death. I know my old Nokia phone is exploitable, and that's about as dumb as it gets.

I'd link, but I'm at work.

Re:The Most Secure Mobile OS

[DrXym]

I've answered push elsewhere. As for porting iOS apps to Android, yes many have been ported, particularly games. It's relatively straightforward to write code for Android / iOS where 90% of the code is shared because there is so much commonality in the APIs they offer. Both offer OpenGL ES and OpenAL for example, the other stuff such as touch and other services can be abstracted away. The Java / ObjC can be restricted to some glue to kick off the C++ code. Even RIM's Playbook finds itself in a better place than Windows for portability because it shares those APIs.

WP7 has absolutely no commonality so it relies on people porting apps from scratch or using some kind of portability API like Phonegap, Rhodes or so on. None of these are particularly palatable options. So claiming that it's not a big deal or whatever is simply wrong. This was demonstrated just this week when Angry Birds Space was conspicuously not available on WP7. I don't doubt someone in Rovio is working on it, and maybe they even have the resources to put into backend code generation tools that work off some platform neutral format but very few other companies have. It's obviously an impediment to app development and lack of apps directly leads to lack of users.

Re:The Most Secure Mobile OS

[DrXym]

No problems? There is no multitasking at least so far as apps are concerned. When they are not in the foreground they are suspended. The only way to make them do anything in the background is through a background agent and there are a hideous set of restrictions on what they can do. I note since the last time I looked at that page that 256MB devices don't even get to run background agents AT ALL. So you can look forward to a range of "budget" WP phones which are totally gimped.

Re:The Most Secure Mobile OS

[errandum]

I was quoting the top google result (out of thousands). I thought it illustrated the problem because it actually explained the problems in laymen terms. But everything you and your ilk read was "he's from microsoft! It doens't matter if he has a point!!!!".

Shame on all of you.

Re:The Most Secure Mobile OS

[ByOhTek]

The facebook app on Android is awful too...

Regardless, having WP7 - it does feel more secure, mostly because looking at the developer stuff for it makes you realize there is a lot that is just plain prohibited...

Re:The Most Secure Mobile OS

[Higgins_Boson]

Sure it refers to Windows 7 on the MOBILE platform. Which is why it's called Windows Mobile 7. In fact, if you search for "Windows Mobile 7" using your favorite search engine, it's typically Microsoft's site that comes up as the top link. Pardon me for not saying thing exactly the way you want them said.

As for the language... how was it not clean? What about the words "sanitary napkin" and "diarrhea" are offensive to you? Are you the pretentious type of asshat who goes to his doctor and says "when I go number 2, it's watery"? Or do you use the word "diarrhea" to describe it?

Honestly... get over yourself.

Also, why do I call it Windows Mobile? Because fuck you. That's why.

Re:The Most Secure Mobile OS

[Higgins_Boson]

I have limited experience with the android app for Facebook, but you're correct... it is slow, clunky and seems to do a lot of things in the background that it doesn't share with you.

Re:The Most Secure Mobile OS

[Hal_Porter]

^ He only wrote this because he was waiting for more coke and whores to be delivered by his ex KGB consigliere.

Re:The Most Secure Mobile OS

[LordLimecat]

Not sure it makes sense to compare Konqueror with adblock to Windows: there are numerous browsers with adblock available for Windows, and Konqueror lacks sandboxing (which IE has). You could get Chrome for Fedora, but then you could do that for Windows as well.

Second, Windows is now more secure than before b/c of all the security features/paradigms that were 'inspired' by Unix/Linux/BSD/etc.

Possibly youre mistaking my post for a "Gates better than Linus" troll post (certainly the mods have read it that way). Im just saying, right now, if you are being targetted by someone @ Pwn2Own, I dont think there is a significant difference between Windows and Linux from a security standpoint.

Recall that story from 2-3 years back where a specially crafted PDF file opens Calc on windows and xcalc on Linux when you view it (arbitrary code execution), and remember that the most popular attack platforms-- Flash, Java, PDF-- tend to be installed on all desktop platforms; and then look at the list of protections that each platform offeres, and the field looks a lot more level.

Re:The Most Secure Mobile OS

[LordLimecat]

Windows uses file extensions to identify file types, and hides them by default, making social engineering attacks more likely (nude_girl.jpg.exe !), on windows simply downloading a file which has a name ending in .exe makes it executable, whereas on linux you require an additional step.

Silly me, I had thought that Gnome hid .desktop extensions and (until very recently) marked them executable with no warning by a simple doubleclick. Further, you could make the file claim to be named whatever you want and hide the FULL filename by tinkering with the settings in the .desktop.

Thats right, virus.sh.desktop could look like a script icon and claim to be backup_home.sh.

Re:The Most Secure Mobile OS

[LordLimecat]

"This file could damage your computer!" warning when you try an execute a downloaded file. Linux has no equivalent, but I'm not going to pretend that this feature provides more security than making files non-executable by default.

Except that until very recent Ubuntus, and possibly still on other distros, .desktop files had execute by default with no warning; and whats worse those files could masquerade as anything with any icon.

Re:The Most Secure Mobile OS

[LordLimecat]

If you are able to firewall a service off completely and have the system still work then that service is simply not required!

That is not correct. A service may be designed to interact with other services over certain ports, even locally, in order to make it truly network transparent. Those ports may be firewalled to block any access not coming from 127.0.0.1; thats different than it being totally disabled.

Try this as an experiment-- launch httpd, then try to launch another service that wants to bind to port 80. It will fail to launch because it cannot access that port, even if it would have launched with that port firewalled.

Re:The Most Secure Mobile OS

[BasilBrush]

Clearly you don't object to shills. Most of us do. And most of us have the intelligence not to accept their writings.

You think he has a point. More the fool you.

Lets be clear, there will obviously be vertifiable points of fact in what he wrote. But he will have concentrated on those things that put Microsoft in a good light, and ignored those things that put any competitor in a good light. And constructed any opinion or argument arising from those facts in Microsoft's favour, where a proper independent security expert would be even handed.

Do you accept what's claimed in advertisements without question too?

Re:The Most Secure Mobile OS

[BagOBones]

Apple almost always published a fast patch to the remote exploits, IE jailbreakme only worked if you DIDn't update right away... Apple now publishes updates over the air so if you say up to date you actually are very safe.

The iPhone 3GS and higher have had very few remote exploits, almost all exploits for jailbreaking have required direct access for DFU mode to load, and in some cases you needed backup of SSH blobs to do it.

However if someone has direct physical access to your iPhone all bets are off.

Re:The Most Secure Mobile OS

[errandum]

No, I dislike shills as much as the next one, but I'm capable of independent thought and I don't accept or reject things based on simple hatred.

As I said, just google it. There are hundreds of websites with similar comparisons made by people not affiliated with microsoft that tell the same story. Furthermore, this article is careful enough to cite outside sources and base his analysis on facts.

You read "Microsoft" and the blind hatred started, plain and simple. Last time I checked, shills don't disclose their affiliation, they try to pass their stories as impartial, when they aren't. If someone starts by admitting he's a microsoft employee, then he's no shill. And maybe, just maybe, you should read what he has to say before assuming it is propaganda - it isn't. Security experts are also quoted in the article, with no Microsoft affiliation whatsoever.

Re:The Most Secure Mobile OS

[BasilBrush]

I don't accept or reject things based on simple hatred.

Compare and contrast with your first reply to me:

"Damn, how I hate ignorant fanboys."

Hypocrite.

Re:The Most Secure Mobile OS

[errandum]

Did I reject your argument? But I do hate you! (:

Re:The Most Secure Mobile OS

[dave87656]

Security through Obscurity. Windows 7 isn't actually safer, it's just that no one has it.

Re:The Most Secure Mobile OS

[dave87656]

Viber, WhatsApp are two glaring examples of missing apps for WP7. And many of the apps which are available cost money but the very same apps are available for free with Android.

Re:The Most Secure Mobile OS

[dave87656]

It takes forever to start up

That has not been my experience. It starts as quickly as on my daughter's Iphone.

Re:The Most Secure Mobile OS

[dave87656]

I've loved the reviews on it. But what about apps?

Re:The Most Secure Mobile OS

[Pentavirate]

It's simply because the bluetooth api isn't open on WP7.5 yet. I think that's a major pain but it does only affect a limited number of potential applications.

Re:The Most Secure Mobile OS

[toadlife]

You've be able to audit pretty much everything security-related in Windows NT, dating back to the 90's.

Not that these complex security mechanisms mean anything in the context of every day desktop security.

-1 Flamebait

We need a way to moderate articles.

Re:-1 Flamebait

[Bucky24]

We need a way to moderate articles.

It's called the Firehose.

Pen and paper

[JoeMerchant]

Thousands of years and it's never been broken.

Re:Pen and paper

[phayes]

Thanks for the LOL, only someone completely ignorant of the history of cryptology could state that pen/paper have never been broken.

Re:Pen and paper

[JoeMerchant]

Obviously intended as a joke, I suppose I should say "never been broken by remote exploit."

Also, to the Offtopic mods - I challenge anyone to find a more meaningful reply to the stated question (which I would liken to: Which Pickup truck is more dependable, Ford, Chevy or Dodge?)

Re:Pen and paper

[Ukab+the+Great]

Unless your invisible ink gets lempwn3d juiced.

Re:Pen and paper

[smi.james.th]

There may be some truth to that actually, low-tech may well be best in this case. If you have an old "dumb" phone, or even a feature phone, then there aren't likely to be any exploits. Granted you are sacrificing a lot of functionality, but do you really need a smartphone? Sometimes I almost wish I could give mine up just for a bit of peace and quiet. (Yes I know, turning it off would work, but then it ceases to be a functional phone and thus defeats the point of having it.)

Re:Pen and paper

[viperidaenz]

I don't know about you, but I can access content stored on paper remotely. I use my eyes. It it requires remote page turning, Dr Farnsworth invented an invention to do that. The Fing-Longer

Re:Pen and paper

[phayes]

s/obviously/obscurely/
When the tongue is so far up the cheek that one wonders just which cheek is closest you cannot assume that you will be understood...

BB

[errandum]

RIM's OS, especially due to the way they handle communications, is by far (as far as I know) the most secure OS. And neither iOS nor Android look particularly secure to me, since every other week you see some news of them getting exploited.

Re:BB

[gl4ss]

"due to the way they handle communications"? you mean by a central failpoint and by bb owned servers to which they will gladly give the keys for any government?

if the dude wants a smartphone with security and choice.. go symbian, bitch to do things even if you want to, very few rom versions with jailbreaks(equivalent). or windows phone. or just some bog standard j2me phone. they'd fit the smartphone standard of couple of years ago. they fit the "smartphone" description just as well as windows phone actually and there's not much to root(there is of course and there are some exploits for some j2me phones which let you execute code out of the vm, but that's very, very exotic and very few models with anything published and generally not worth it for blanket approach hackers).

the android "exploits" are mostly local access though, or installing things you give permission to do things. if you go custom rom you can turn capabilities on/off for a program, which is useful if you intend to use that smartphone for something still. mobile webkit and mobile safari don't look particularly secure though(especially mobile safari).

Re:BB

[Bert64]

Have a read of what was said at last year (or was it the year before) pwn2own contest, A guy there successfully compromised the blackberry handset and concluded that its mostly security through obscurity, where the perceived security of blackberry handsets is based on the fact that very few people have taken the time to investigate and understand the system in depth.

Re:BB

[errandum]

Yes. They do secure, as you said, RIM gives the keys to governments. I don't consider that insecurity, but compliance with laws of a certain place. If you steal a BB phone you'll have a hard time getting what's in there if you're not a government. The only reason I wouldn't recommend BB is if you're a terrorist. You might get nailed by your phone then.

On the other hand, you might argue that having a single point of failure is a bad architecture. But it is not insecure, just dumb.

And depending on model, Android exploits can be more than that. Just look at the way some phones get rooted (some exploits don't even require a PC). And you forget that Android phones either don't get security fixes past a certain point or most handset makers take months to release new OS versions. Android has a lot of malicious apps but in terms of security, some phones, are extremely low. On the other hand, you can build a secure android device - but it'd still fail in the communication department unless you implement a RIM like VPN architecture.

Re:BB

[MyFirstNameIsPaul]

RIM doesn't give out the keys, they give out the message, so if large governments like the Indian government are unable to crack the messages, then it's unlikely thieves are able to crack them.

Re:BB

[errandum]

Never said it was 100% secure, but the only way to break the encryption without loosing all data (from what I gather) was targeted at the backups and not the phone themselves. If you steal a phone, I don't think you can break it without the government codes.

Re:BB

[na1led]

What good is security without reliability. RIM has so many issues, not the least of which is their failing infrastructure, and poor support.

Re:BB

[errandum]

The question was security, not how reliable the network was. A single point of failure architecture is a shitty architecture by any reasonable measure, but that was not the question (:

Re:BB

He was talking about the Javascript vulnerability in the OS6 browser on the BlackBerry Torch back in March of 2011. They were able to get access to the phone's media card and built-in storage file storage, however the internal application memory (eg, email, contacts, etc) were still protected. This isn't surprising considering in OS6 they adopted Webkit/Javascript engine so that sounds pretty par for the course from what I've seen.

The only other time I've heard of a BlackBerry having a security issue is if you encrypt the MicroSD card with a password that is the same password as the device password-then you can take the MicroSD card out and bruce force the encryption on the card and find the device password. If you tried doing that to a standard BlackBerry you'd get 10 chances before it wiped itself. This is pretty specific and easy enough to work around by either having a different encrypted password for the MicroSD or just not using it at all.

I've seen far worse track records...

Re:BB

[viperidaenz]

j2me phones have always fit in the "feature phone" category, not smartphone.

Re:BB

[MyFirstNameIsPaul]

I doubt the Indian government is hiring 'your average Indian developer'.

Re:BB

[acoustix]

What good is security without reliability. RIM has so many issues, not the least of which is their failing infrastructure, and poor support.

That is false. If you want to compare uptime, RIM's BES network has had far less downtime in the last 10 years than Apple's iCloud service in the last 18 months.

Re:BB

[na1led]

We used to have a BES server at work, but we finally had to ditch it! It was down more often than it was up, and the last time it was down for 2 weeks! RIM couldn't solve the problem, they wanted us to rebuild our Exchange Server, we said -to hell with you.

Re:BB

[narcc]

If you're on BES, RIM can't give the keys away because they don't have them.

Maybe you should learn a little more about the platform before you shout nonsense.

Re:BB

[narcc]

It's "Read messages with help from RIM" vs "Read anything we want OTA"

Besides, if you're on BES, RIM can't "give the keys away" because they don't have them. If you want to keep the government from reading your messages, BlackBerry is the only way to go.

Re:BB

[narcc]

IIRC, the media card attack only worked if you picked "device password" under the "mode" option under media card encryption. If you picked the stronger "device key + password" you were still safe against the attack (also if you picked device key only, I believe.)

In short, you got less security if you opted for less security :)

Re:BB

[narcc]

That's your fault, isn't it? If your staff can't maintain a BES server, that's not a failure on RIM's part.

There are zillions of BES servers running around the world without problems likely serving many more users that yours.

For a car analogy, it's like saying that Ford brand cars are unreliable because you destroyed two of them driving drunk!

Re:BB

[gnoshi]

Of course, if you are not on BES, then your phone uses exactly the same encryption key as every other Blackberry.

At least you don't need to worry about a MITM attack, right?

Re:BB

[Bert64]

In all cases i've seen, the phone is able to power up and start receiving data without requiring any user input, and user input is only required before it will let you view the data. It is not only able to receive data, but also process it in its unencrypted form, because it will alert you about calendar appointments etc, without requiring you to first enter your password.

In order to do this, even if the data is encrypted, the encryption key must be stored on the device in order for it to access the data. Therefore it's only a matter of time and skill for someone to find out how the key is stored, and how to extract it.

Contrast this with say a full disk encryption system running on a laptop, where the system is unable to boot at all without entering the key because it can't read any of the data until you provide the key for decrypting it. Is there any phone that works like this?

If you tried doing that to a standard BlackBerry you'd get 10 chances before it wiped itself.

This assumes that you are going in the front door and using the provided interface...
If you go in at a lower level, then the 10 chances logic isn't running.
Software access control systems are irrelevant if you have access to the kernel level.

This is a very common misconception, just because the interface you normally see requires you to enter a password, and wipes the device if you enter it incorrectly, doesn't mean someone can't go in at a lower level and modify/remove the code that implements that logic, while leaving the code that provides access to data.

Movies are a bad influence here, think "missile launch codes"... Just because a missile is designed to be fired by entering a code, doesn't mean that with physical access and sufficient knowledge you couldn't remove that requirement, you have all the components you just need to make them do what you want. The code, just like an immobiliser in a car or any number of other measures only makes the process more complicated and slows it down.

Re:BB

[errandum]

I think it is obvious that not ALL the disk gets encrypted. Your system wouldn't boot if that happened. Is that insecure also? They simply leave the e-mail and appointments warnings out of it. It's the tradeoff of full security and usability.

And I've seen more than one tool that is able to access an iPhone and some Android phones in minutes, but I've also seen news of countries demanding the key from RIM because they can't access a BB.

And all throughout the article you said "it is possible". show links to a compromised BB phone that didn't have a 12345 PIN and I'll bow down... I just haven't seen any of those.

Re:BB

[errandum]

Oh, and the fact that it receives and transmits data doesn't mean it is insecure. A simple key exchange protocol will allow you to communicate securely without having to store anything on your phone but RIM's public key.

Was already covered

http://www.schneier.com/blog/archives/2012/03/nsas_secure_and.html

Security is something that people who need or want it, will have to pay for.

Most people do not care.

Symbian?

[RyuuzakiTetsuya]

Normally I'd otherwise shit all over symbian, but, why not Symbian? Years on the market, it should've been proven one way or the other by now.

Also, what level of paranoia are we talking? State or industry secrets? Personal paranoia?

Re:Symbian?

[ColdWetDog]

Also, what level of paranoia are we talking? State or industry secrets? Personal paranoia?

Exactly this.

Are you worried about some random app stealing your contacts? Easy - don't install random apps.
Are you worried about somebody tracking you with your GPS / wifi trangulation / whatever? Easy - get a dumbphone. Turn it off most time. Or get a radio.
Are you worried about the NSA picking up on your conversations with your co conspirators in an effort to blow up Wall Street? A bit harder. Get a one time pad. Get rid of that FBI informant in your cell (yes, that one).

This isn't hard, folks.

BB OS7.1

[bbhorrigan]

The BlackBerry J2ME OS is by far the most secure OS out right now in terms of e-mail, for the simple fact that it tunnels corporate e-mail through its NOC and that is encrypted with triple DES the entire way. As far as handhelds go, I see about 1000 BlackBerry's a week in the course of work, and I've never seen a BlackBerry virus. Although doing some hardening testing with Windows Phone 7, I can say I am generally very impressed with it as well as the active-sync client.

Re:BB OS7.1

[Moses48]

Depends on your definition of security. If you want the government spying on all your emails, hen blackberry is the way to go.

Re:BB OS7.1

[narcc]

You say that like it's not significantly easier for governments to spy on other platforms.

Of course, if you used BES, RIM can't give the keys away to governments because they don't have them.

So, if you want to keep the governments prying eyes off of your data, BlackBerry is the only way to go.

Re:BB OS7.1

[Fjandr]

The important thing to note about this is that the governments in question had to demand access from RIM. Notice no demands were made of other platforms. Why? Because they didn't need to demand access to read whatever their intelligence services wanted to read.

And, of course, there's the possibility of using tunneling or private BES servers and bypassing that problem entirely.

Mutually exclusive

[rtkluttz]

If it is not jailbroken it is DEFINITELY not secure. With carrier spyware and apps that are not under your control, the first step to security is making it YOURS and yours alone.

Once you are to that point, then you can BEGIN evaluating the core OS for security.

Re:Mutually exclusive

[hobarrera]

Unless you simple don't buy the phone from a carrier and buy it unaltered.

Whats your threat model?

[nweaver]

What is your threat model? Do you use it for websurfing? Download lots of kewl apps? For the latter, from which app store?

I suspect that iOS is a bit more vulnerable on the web browser side, as android has a fair bit better sandboxing which means an exploit of the browser takes more work to fully p0wn the phone, while in iOS-land, 'p0wn the brower == p0wn the phone'

But OTOH, Apple is a much better curator: with only the official App store, and with bad-actor app-developers and apps a rarity, the Apple App Store is very safe.

Android? Not so much. Even the official Google store seems to rely too much on the Android sandboxing to keep users safe (when users just say 'ok' to anything needing scary permissions), and other App Stores are a vile abomination.

Finally, anything that doesn't say "Nexus" on it should be considered end-of-lifed before you buy it. Apple patches things for a long time, so old vulnerabilites shouldn't worry their user base. But Android phones, since they are pretty much EOL'ed right from the start, often never receive critical browser and related security patches, security patches which, due to the open nature, can pretty much be reverse engineered by a competent exploit developer.

So, my ranking: Nexus Phone > (slightly) iPhone >>> generic "Android" phone

Re:Whats your threat model?

I suspect that iOS is a bit more vulnerable on the web browser side, as android has a fair bit better sandboxing which means an exploit of the browser takes more work to fully p0wn the phone, while in iOS-land, 'p0wn the brower == p0wn the phone'

Safari on iOS runs in a sandbox. Exploits against iOS-Safari have always required combining two bugs, one to p0wn Safari and a second to break out of the sandbox.

This has been done, successfully, in the past.
http://www.tomshardware.com/reviews/charlie-miller-iphon-hack-jailbreak,2710.html

Naturally, both of those old bugs have been patched, and as of now there are no known ways to break the sandbox from within the browser. All current jailbreaks require local access.

Maemo / meego

Since they're true GNU/Linux platform...

None.

There is no such thing as a secure mobile OS. They are all broken six ways from Sunday.

Security is a pattern of behavior as much as anything else. If you're serious about security and you need to use your phone for work, you need to use your phone only for work - never connect it to anything else, download any applications, visit any websites, etc.

If all you want is the ability to visit random websites and download random apps or games, do those things and don't use your phone to store or input sensitive information (e.g. logging into an online banking website or the email account you use for banking, storing passwords, etc.)

Why not WebOS?

[WarpMeister]

I mean, nobody here believes in security-through-obscurity any more do we? Windows phone and Blackbery, are perceived as secure, and are certainly security audited by their vendors. However, WebOS could actually be a lot less code to go through, and thus easier to audit than Android. Android has the disadvantage of being a target of opportunity, due to its commercial success. WebOS is basically dead, and there is no currently shipping hardware that is likely to keep shipping much longer, and no new devices planned. It's... a security-lovers dream platform. (Sarcasm only slightly intentional here.) Warren

Re:Meego Harmattan

[Gaygirlie]

I kind of have to agree with the Anonymous Commenter here; MeeGo is extremely fast, stable and easy to use, and so far everyone I know who has tried it has praised it. It also seems to have quite extensive security features. The issues are obviously that there's not as many applications available for it, none of the popular mobile games and so on, but that also is yet another layer of security too; it's simply too obscure an OS for it to be a lucrative target for hackers. You *CAN* install Android ICS on it, too, and dual-boot between Meego and ICS if you need something that Android has and Meego doesn't.

The thing is that you have to find somewhere to buy a Nokia N9, and they're not terribly easy to come by these days. But if you're looking for secure yet easy-to-use OS I'd say it's worth it.

Disclaimer: I do not own an N9 nor do I own any other device that runs Meego, so I cannot help with any specifics.

Series 40

[lobiusmoop]

If you're really that bothered, maybe go for a phone that does phone calls, texting and some light web browsing with very little scope for crapware to get on board?

Let history be your guide

[jamesl]

There was a time when the most secure (consumer) desktop OS was the Mac -- because there were so few in service that the bad guys spent all their time and effort on Windows. By that measure, the most secure mobile environment is Windows Phone 7.

Re:Let history be your guide

[Anubis+IV]

There's a difference between safety and security, which you appear to have conflated. You can have an unlocked house that's wide open in a low-crime area and likely be safe without being secure. You can have a locked house with bars on the windows in a high-crime area and be secure without necessarily being safe.

Safety is what we all want. For someone using a popular device/OS/whatever, you have to rely on security since other factors (i.e. obscurity) will not protect you. If you're a valuable target, it doesn't matter what device/OS you're using, you'll still need to be secure because you are likely to be targeted. Thus, obscurity is not a viable measure of protection.

Re:iOS has yet to be hacked in the wild...

[Pewpdaddy]

Pass that this way.... Bah nevermind..... In other news my Mac is bullet proof!! /sarcasm off .. Every OS is penetrable, hell even the flying drones are getting viruses. As an aside, every smartphone on the market is tracking what you do and who you talk to, and blah blah blah no matter what OS it runs. Google's is by far the worst, but your beloved iPhone is doing the same thing. http://www.zdnet.com/blog/security/us-government-pays-250000-for-ios-exploit/11044

Re:iOS has yet to be hacked in the wild...

[Gaygirlie]

Contrast that to Android where two taps can turn one's phone into a spam machine, not to mention slurp up every single byte and hand it to an overseas organization.

I know this is a flamebait, I just wish to point out that the actual truth is far from what the AC here tries to portray; the most common method for Android phones to misbehave and people getting large bills is through the 'free' applications and games available on Android Market that send SMS-messages to premium numbers behind the user's back or similar stuff. That is no inherent fault of the Android OS itself, it's about how shoddy job Google does in regards with keeping the Android Market safe and clean. The remedy is simple though: don't install everything that is 'free', read a few reviews first, and check if there is something weird about the permissions that the application/game requests; there was for example a live wallpaper there just a while ago that requested the permission to open data connections, send SMS messages, read/write browser history and contacts list.. Obviously when a god damn wallpaper asks for such permissions there is something screwy going on.

That said, Google *really* must step up the game and do something. This kind of stuff is ridiculous.

Re:No answer for you

[narcc]

A corporate-based phone (Blackberry) is going to make corporate security more of a priority than usability

I haven't noticed any problems with usability. Quite the opposite, in fact.

Security doesn't "get in the way" at all on the platform.

Define Secure / The one not on the network

[galego]

People throw around the term 'secure' all the time ... what does that mean in this instance?

Does the OS keep apps away from data they shouldn't have access to? Does its browser have the best track-record on drive-by's etc.? Does it mean it has/hasn't been exploited in the wild or not (e.g. Safari is riddled with security problems, but how often is it pwned in the wild?)? Do you want to be able to click links wildly and not get infected (and unicorns and rainbows)? Good security policies and enforcement of them? Criteria for/review of apps in the mobile stores/markets?

So ... what does secure mean for you? Define that and then try ask slashdot again later.

Quickest Updates

[Flammon]

They're all pretty close in terms on security features so it comes down to the one that's updated the quickest.

Most secure is...

SYMBIAN

BlackBerry

The old Blackberry OS (up to the latest, 7.1 coming out soon) has yet to be rooted or exploited. And the PlayBook qnx OS (completely different from the BBOS) had that dingleberry exploit a few months ago, but it too has since been plugged.

exploits

[kirkb]

The number of exploits found in each mobile OS seem to be proportionate to that OS's market share. Note that found is the key word here. For the same reason that hackers prefer to find exploits for Windows instead of Mac, more holes are found and exploited in Android and iOS than in WP7 and Bada. It doesn't necessarily mean that WP7 and Bada have less holes, it's just that it's not (yet) worth anybody's effort to find them.

But if security really is the submitter's #1 factor for picking a smartphone (which seems a little far fetched), then I guess I'd recommend Bada. Good luck with that.

But TBH, I think the best way to stay safe regardless of which phone you own is to avoid dodgy apps and dodgy websites. Use common sense and you'll be fine with whatever phone you choose.

Re:iOS has yet to be hacked in the wild...

[shutdown+-p+now]

iOS has yet to have a breach in the wild. There is the PDF exploit in the past, but that has yet to be used for anything other than a jailbreak

Oh, so it's merely a remote arbitrary code execution exploit? and it was actually used "in the wild"?

By the way, how do you know that it was never used for anything other than a jailbreak? Supposing someone would have used it to write an iOS exploit; how would the user of the infected phone know?

Samsung's Bada

[It's+the+tripnaut!]

I'm not sure if this is available in the States, but Samsung's Bada would probably be one of the most secure mobile OS at the moment. There are no exploits out in the wild and no way to root it unless you actually flash the firmware.

More information on security is available via this developer link.

Re:Samsung's Bada

[Hatta]

Nice, it's reportedly going to be open sourced and merged with Tizen. If we can get a fully open source cell phone stack, I might actually buy a cell phone.

Re:Samsung's Bada

[dave87656]

it's reportedly going to be open sourced and merged with Tizen

This is what I'm waiting for as well.

Re:iOS has yet to be hacked in the wild...

[ColdWetDog]

What? Use your brain?

That's crazy talk!

It exists, but you can't have it...

[AliasMarlowe]

Since TFS was probably submitted by someone in the US, we can only reluctantly recommend the phone he is not allowed to have. Nokia decided not to embarrass their Lumia models in the USA, UK, Japan, Germany by releasing the N9 in competition.

Re:It exists, but you can't have it...

[oakgrove]

Nokia decided not to embarrass their Lumia models in the USA, UK, Japan, Germany by releasing the N9 in competition.

Isn't that the truth. My last check was that the N9 was outselling the Lumia series 3:1 despite being gimped by Elop.

Objectivity

[Caerdwyn]

Yeah, like you're going to get an objective answer here. Slashdot doesn't have experts. It has OS bigots.

That being said, the most secure mobile OS is the one on the phone operated by someone who doesn't install ad-supported "free" apps, who password-protects the phone, doesn't load pirated software, and who enables remote wipe/locate-my-phone functionality.

Fishbowl (NSA's Android project)

[Qubit]

http://www.engadget.com/2012/03/01/nsa-builds-own-model-of-android-phone-wants-you-to-do-the-same/

Okay, so it's only off-the-shelf parts, but if you really want a mobile device that can earn the label "secure," (software ain't a thing w/o hardware) you're probably going to want something vetted by a security organization/company like....well...the NSA.

Most secure mobile OS?

[kurt555gs]

Maemo / Meego Harmattan. Period. Full Stop.

WebOS

[SCHecklerX]

WebOS is ok. The only exploit I recall is the SMS exploit that hit everyone else too. They were quick to fix it. It's linux, so you can easily write your own iptables rules, disble services, etc. No jailbreak required for this. It's an open platform by design, and HP/Palm supported its community rather than try to lock them out.

Re:WebOS

[alexandre_ganso]

Not to mention no one cares about him - so no exploits.

Simplicity usually wins here

[g0tai]

The more complex the OS, the more chance for exploits. The simpler the OS, the less chance for things to go wrong, and if they do, the less chance for whatever is doing it to get anything useful. Granted there are some really awful 'simple' phones out there, but in terms of running trojans you're not going to get much going on your very basic cheap and nasty non-smart phone in the way of malware if all it does is make phone calls and send text messages (and doesn't have MIDP).

Nothing is more secure than the person using it

[mmmmbeer]

Almost all security comes down to social engineering. Any smart phone is open to attacks, and the primary attack path will generally be through the user. Don't install questionable apps. Don't visit unsafe websites; AFAIK, no mobile OSes are currently open to driveby attacks, but they have been in the past. (iOS in particular used to be; that was the basis of a way to jailbreak the iPhone.) Be alert to phishing and other types of trickery. Apply all relevant updates. Odds are, if you ever do get compromised, it will be because of something you did, not something inherent in the security - or lack thereof - of your device.

Whatever

[koan]

Was in James Cameron's pocket when he was 7 miles under the ocean.

don't worry...

[CosaNostra+Pizza+Inc]

"put off by all of the security exploits posted on Slashdot over the last few months, particularly for Android" Funny you should single out Android because IOS has also had plenty of exploits and security holes despite (or maybe because of) Apple's walled-garden approach to software development, vetting, etc. I know this for a fact...I wrote a research paper on it.

Re:iOS has yet to be hacked in the wild...

[crypticedge]

Have you ever seen what the apple forums mods do when you post about getting a virus on a mac? They delete the post and ban your account. A few years back when mac's started getting viruses in the wild that was the exact response they took to every post, holding the "mac's don't get viruses" lie that so many still like to claim. This action has still been taken against people who post about them on the iPhone (they did it to people who asked about CarrierIQ as well, something confirmed to be in each iPhone made, and apple was the last to remove it - So by your argument, iPhones came pre-compromised for a longer period)

Basically, you don't hear about it on mac forums because they control the comments and prevent you from hearing about it. Cutting out the tongues of those bitching doesn't fix the problem they were bitching about, just makes them silent.

Also, there have been bad apps caught in the iTunes market on more than one occasion, and the PDF exploit that was used for jail breaking was also in the wild, but the people who used it to jailbreak never got infected via it because the jailbreakme site patched the exploit on those who jail broke. Stop apple astroturfing and pay attention to the reality of the phone market.

Silencing the people with issues doesn't fix the issues they have but it does a good job keeping the sheep happy.

Re:No answer for you

[kangsterizer]

its also not really all that secure.

N900 with a cut down version of MeeGo

[quarkie68]

I use it to SSH to my systems and I browse the web using Lynx. Bandwidth efficient and secure. Even the default Maemo from Nokia is more secure than most of the Android derivatives. I am not going to use an Android phone if I SSH to my servers anytime. Never failed me security-wise and I think it never will.
GM

Re:No answer for you

[narcc]

It's far better than the alternatives, and has a proven track-record. It's also the only brand that consistently achieves the highest level of FIPS certification (on both phones and tablets) to say nothing of other security related certifications.

The question here is about the most secure mobile phone. BlackBerry is, without question, the answer.

My post was about usability vs. security. I was asserting that, from my experience, the legendary security that RIM provides does not hinder usability.

Want real security? Get an N900 or an N9

[jdb2]

The N900 and N9 are full blown Unix/Linux machines with all the bells and whistles that come with a non-neutered version of the GNU/Linux environment.

That being said, they support many Unix/Linux security mechanisms, but if you want proof, how about full disk encryption for starters?

jdb2

Re:Want real security? Get an N900 or an N9

[CosaNostra+Pizza+Inc]

Android already uses the linux kernel and OS. To be more secure, you'd need SELinux plus you'd need something like AppArmor running.

reported security exploits

[neonsignal]

If you are going to make a decision based on the number of public exploits, then you probably should choose the most proprietary system you can find, where the bug report database is hidden from view.

Good luck with your security through obscurity, you'll need it.

Re:No answer for you

[Lehk228]

Agreed, I am using a bold 9700 with OS 5, everything integrates nicely, I can upload a picture to anything that may accept a picture from the camera right after taking, or from the image browser or from the filesystem browser. Third party apps can be installed from the browser without need of a PC, just about everything except OS upgrades can be done on the phone with no computer attached, and the real keyboard means actual content can by typed in, unlike touchscreen keyboards which can only strive to suck less

Campbell's OS

[jpvlsmv]

The most secure OS for a mobile device is clearly the Campbell's Soup OS.

Get 2 empty soup cans, and tie a string between them.

Look, it can even run "multithreaded" apps!

--Joe

Why single out Android?

[CosaNostra+Pizza+Inc]

And just to show once again that there's no reason to single out Android among the other mobile platforms for security vulnerabilities, this slashdot article about an IPhone crack was released just one day later. http://apple.slashdot.org/story/12/03/27/212254/cops-can-crack-an-iphone-in-under-two-minutes

Custom mil-grade Android kernel

[BillX]

I hear this custom Android build is pretty secure, if you can get your hands on it of course.

Most Secure Mobile OS?

[phoenixlpr]

SymbianS60/SymbianQT TPM system from ground up, buffer overflow is eliminated by design. Capability based security, critical capabilites can not be granted by end user, just OEM, and platform.