1. No category

Need for a secure mobile platform

White Paper – Infineon Mobile Security Concept
07-01-2015
Need for a Secure Mobile Platform
Hardware-based Security for an “Always Connected” Mobile World
www.infineon.com
White Paper – Infineon Mobile Security Concept
07-01-2015
Abstract
Mobile device sales and general penetration are growing rapidly worldwide. As more and more
computing functions move into mobile devices, sophisticated yet easy-to-use device-driven
computing capabilities are becoming ubiquitous. The variety of services, applications and functions
White Paper – Name
available
on mobile devices leads to large amounts of data being stored on devices and
Date-Month-Year
transferred to and from devices. Some of this data includes sensitive information such as credit
card numbers, user names and passwords as well as confidential business or government secrets.
Attackers manipulate mobile devices to access their functions and applications and to sell or use
the confidential information they access in the process. In many cases, software fails to protect
devices from such attacks and sensitive data is revealed. In order to prevent criminal attacks and
protect the confidentiality of data, a certified secured hardware and software solution for mobile
devices is necessary. This white paper provides insights into potential security threats and focuses
on a solution that could realize a more secure mobile device environment.
2
White Paper – Infineon Mobile Security Concept
07-01-2015
Contents
1 Mobile Device Market .................................................................................................... 4
2 Benefits of a Secure Mobile Platform .......................................................................... 6
3 Moving Towards a Secure Mobile Platform................................................................. 8
3.1 Platform Security .................................................................................................... 9
3.2 Application Security................................................................................................ 9
3.3 Strong Authentication ........................................................................................... 10
3.4 A Hardware-Secured Mobile Platform .................................................................. 11
4 Summary ...................................................................................................................... 11
References ....................................................................................................................... 12
3
White Paper – Infineon Mobile Security Concept
07-01-2015
1
Mobile Device Market
The number of mobile devices on the market is steadily increasing [1], with tablet sales rising
23.9% and smartphone sales growing 39.2% in 2013. Looking ahead, growth forecasts remain
positive [2] [3]. In recent years, mobile devices have become more and more intelligent as
computing functions and applications move from laptops and PCs to smaller, smart devices such
as phones and tablets. As smart devices become the most important entry point to a wide variety
of data ranging from private photos to large data sets required for different applications, both the
end user and the providers of services that can be accessed via these devices have an increasing
interest in protecting this data. Increasingly popular in the enterprise and government context,
these applications use large volumes of data, some of which is extremely sensitive. Typical
applications that require high levels of security include corporate, payment and health systems.
Here, loss or theft of confidential information could have serious implications.
4
White Paper – Infineon Mobile Security Concept
07-01-2015
Increase in criminal activities
Smartphone-related criminal activities are growing rapidly as demonstrated by the rising number of
attacks [5]. Attackers gain access through malware, viruses and ransomware. Once they have
accessed a device, they can steal the owner’s identity, spy on the user and expose confidential
information such as banking and credit card data. An example is the BankMirage app [7], which
pretends to be a legitimate banking app and tricks users into using an in-app login, thereby
revealing their login credentials. The loss of data is not only critical for individual consumers but
often has an even higher impact on the providers of applications and services whose business
information, customer data and other sensitive information is accessed during an attack. In the
corporate environment, intellectual property (IP), insider knowledge and customer data are the
targets of attackers and can cause immense damage to the reputation of the company affected as
well as resulting in loss of business. An attack also carries risks for mobile device OEMs. A highly
publicized attack can damage reputation, decrease market share or compromise access to
security-sensitive markets.
Smart Android devices in focus
Recent trends show a dramatic increase in smartphone malware, especially for Android devices.
By 2014, more than 650,000 instances of Android malware had been identified [5]. Criminals
developing professional malware (like key loggers, botnet clients and banking Trojans) are starting
to focus heavily on Android platforms.
The Android operating system is increasingly popular for smartphones. Not only does it enjoy the
dominant market share (almost 85% in Q2 of 2014) [8], it also offers anonymity during application
development and deployment. In contrast to proprietary operating systems, the source code of
Android is freely available, making it easy for any developer to anonymously create an app with
malware. One example is the Dendroid malware creation kit [6], which attackers used to
manipulate an app in order to listen in on phone conversations and gain access to photos.
Recently the first boot kit virus on Android phones was reported [9], compromising the device at its
most fundamental level.
“Recent trends show a dramatic increase in smartphone malware,
especially for Android devices.”
5
White Paper – Infineon Mobile Security Concept
07-01-2015
Smart devices in the focus of intelligence services
Criminals are not the only ones targeting smartphones. According to media reports, disclosures
have shown that surveillance programs run by intelligence services are also extremely interested in
data stored on smartphones [10]. Of special interest are social contacts, emails, details about the
user’s behavior and location, interests (through search terms, for example), photos and sometimes
even credit card numbers and passwords.
Threat impact is multiplying
Taking into account the variety of motivations for attacks and the increasing skill level of attackers
as well as rising system complexity, threats will become even less predictable and will have higher
impacts for all parties involved. Unlike past threats, where the impact with, for example, credit card
manipulation affected a single user, current and future threats aim at a much wider target group
and create multiple impacts.
Software protection is not enough
Current security solutions often focus on protection through software only. However, the problem,
as highlighted in the attack examples above, is that there are various ways of manipulating
software. Even when dedicated security measures are implemented in software, the basic
underlying problem is that software is based on code that can be read out, examined for
vulnerabilities or changed by an attacker. For this reason, a hardware-based root-of-trust is
required in the mobile device. The following paragraphs give an overview of the benefits of a
secure mobile platform based on hardware security, and give a better insight into why and how
particular areas of the mobile device need to be protected.
2
Benefits of a Secure Mobile Platform
As mobile networks become more complex and threats become more sophisticated, demand for
security is rising. Different players in the ecosystem stand to benefit in different ways from a more
robust mobile device security.
Mobile device OEMs (e.g. for handsets, tablets) – In order to demonstrate readiness for the
enterprise and government market, OEMs need to show that they can provide secure mobile
devices that can protect customer data, IP and other sensitive information. In this context,
additional security features can act as a door-opener for new industries and revenue streams, and
hence as a unique selling proposition. Furthermore, OEM business and brand value would benefit
in the long term from more robust protection against counterfeit devices and commercialization of
stolen devices.
6
White Paper – Infineon Mobile Security Concept
07-01-2015
Mobile network operators – Security can be offered as a value-added service to increase
customer satisfaction. It can thus prevent customer churn due to security problems. Furthermore,
comprehensive security measures will allow MNOs to offer new service-based business models.
Enterprises – In order to protect valuable information such as IP, customer data and business
intelligence that could be the key to a company’s long-term market success, companies need to
make sure that the mobile devices used by employees are secure. Employees regularly access
sensitive corporate information through their corporate or own mobile device, and an attacker who
gains access to one device could easily get access to the entire corporate network. The
information and data such as IP, process know-how or specific project information lost in the
process can decide a company’s future success and should thus be protected with a high level of
security. By securing their mobile environment, companies can prevent both direct financial losses
caused by extortion and ransomware as well as supporting their long-term success based on their
unique knowledge.
Banking & online retailers – In order to prevent financial loss and loss of customers, all banking
and online retail providers need to be able to rely on mobile device security and also reliably
assess whether a mobile device can be trusted to protect confidential financial information.
Cloud service providers - The priority for users of cloud services is to protect personal data such
as login credentials or photos, and to prevent financial losses. There is a risk that consumers who
are not convinced that their data will remain confidential will withdraw from services such as cloud
computing or not even use them in the first place [11]. Adequate hardware security solutions can
help to create a secured mobile environment in which consumers trust cloud applications and
services and thus continue using them.
Consumers – For consumers, the main concern often lies in the fear of losing personal
information such as private photos or messages. Furthermore, concerns might be focused on what
happens if the personal device is misplaced, lost or stolen. Since a variety of applications such as
banking, online shopping and others are accessed through the mobile device, access to the device
by an unauthorized party and to these applications could have serious impacts and result in large
financial losses as well as in feelings of discomfort and embarrassment when private information
becomes public.
7
White Paper – Infineon Mobile Security Concept
07-01-2015
3
Moving Towards a Secure Mobile Platform
The following paragraphs give an overview of the potential specific mobile device threats which will
be faced by mobile device users and manufacturers and how these threats may be addressed.
These impacts fall into three areas – Platform Security, Application Security and Authentication, all
of which will face an even higher number of skilled attacks in the future.
8
White Paper – Infineon Mobile Security Concept
07-01-2015
3.1 Platform Security
All smartphone apps run on an underlying platform comprising the operating system and hardware.
Building security into apps has little benefit if the platform is not secure enough. Attackers who
break the platform have broken all the apps. There are various ways to improve platform security
and thus help to protect the apps.
Attackers who break the platform have broken all the apps.
A secure mobile platform can improve security for all the apps.
User data should be protected through volume encryption in order to prevent data from being
easily read and stolen by a third party. In order to prevent dictionary attacks, devices should be
equipped with brute force protection.
A secured boot process and continuous device compliance checks (runtime integrity) can monitor
the device’s integrity prior to use. This information can help service providers to notify the user or
restrict access if the device is compromised.
Integrating a kill switch enables stolen phones to be deactivated. This prevents black market sales.
A mobile security controller could be remotely commanded to set a kill bit that can only be reset
with a special command from the handset manufacturer for the phone in question.
The sale of counterfeit devices and accessories can be prevented through the integration of a
unique cryptographic key certified by the manufacturer. This can be remotely verified by the
manufacturer or mobile network operator.
3.2 Application Security
Consumers and corporate users employ a wide variety of apps on their phones. Most of these
apps can benefit from greater hardware security. Commonly used apps are listed in the following
along with a description of how they can benefit from more effective hardware security measures.
Secure E-mail
By definition, e-mail as an application is insecure since traffic can be easily tapped by an
intermediary. Furthermore, users can be tricked into providing information or accepting files and
links from an easily forged sender and recipient. One of the best ways to secure e-mail is to use
9
White Paper – Infineon Mobile Security Concept
07-01-2015
private encryption and signing keys, which are securely stored in certified, industry-standard
hardware. Encryption keys protect sensitive e-mail, and signing keys prevent identity spoofing and
theft of the user’s e-mail identity.
Secure Communication
During phone conversations, lines can be easily tapped and sensitive content overheard. In order
to prevent this, secure voice protocols such as SRTP and MIKEY can be used to allow encryption,
message authentication and integrity. Many VoIP clients and servers support these protocols – but
even that is not enough. The VoIP client also needs to be configured to use a private key that is
stored in secure hardware.
Mobile Device Management
Enterprises want to give employees remote access to corporate e-mail and networks – sometimes
with full VPN capabilities – to enable them to work remotely. Depending on company policy, some
users may be allowed to bring their own device (BYOD) to work and use it on the move. Other
companies insist on corporate-owned devices exclusively. In order to manage BOYD assets,
Mobile Device Management (MDM) software is generally used. Hardware security can improve
MDM capabilities. In order to secure corporate data if a device is lost or stolen or if an employee is
let go, companies need to be able to remotely wipe data from the device. Today, remote wipe
functionality is implemented in MDM software. Security can be improved by having secured,
certified hardware to store master encryption keys, and through a secured mobile platform
controller, which could be commanded to remotely delete those keys.
3.3 Strong Authentication
Companies and government bodies need strong authentication functionality to ensure that only
legitimate employees access internal networks or specific applications. To avoid the perils of
password-based authentication (including the risk of password loss and theft), enterprises have
increasingly moved to multi-factor authentication. Multi-factor authentication is generally performed
by adding another element to the traditional user name and password or passphrase. This could
be a hardware or software token, a biometric check or device authentication step. Thus it is always
a combination of knowledge (e.g. a password) and something the user has (e.g. a token or
fingerprint). However, these authentication techniques add cost and complexity while reducing
interoperability, and they sometimes leave security loopholes. For example, a software token or
software certificate can be stolen by malware.
The new FIDO Universal Second Factor (U2F) protocol and Universal Authentication Factor (UAF)
standards offer improved protection, especially when implemented in hardware. When
authentication is needed, the user is prompted to swipe their finger and/or enter a password. This
triggers the phone to perform a cryptographic authentication. Thus, two or even three
10
White Paper – Infineon Mobile Security Concept
07-01-2015
authentication factors are employed: the phone, the fingerprint and the password. This approach
reduces cost because no separate hardware token is required. It is also convenient for users and
offers effective protection against phishing, malware and other attempts to steal the user’s
credentials.
3.4 A Hardware-Secured Mobile Platform
As highlighted in the security areas above, software alone can be easily accessed and
manipulated. Software alone cannot protect software. In contrast to the rather small impact such a
manipulation could have on a single user and the environment, the impact created by an attack on
the software of connected devices is rising exponentially as the manipulation can spread easily. In
order to protect the massive amount of data stored on the device and used in different applications,
all involved parties will have an interest in using the highest level of protection – hardware-based
security becomes inevitable. The question that manufacturers as well as service providers and end
users (corporate or private) will have to ask themselves is – “How much is my data and information
worth?”.
4
Summary
In view of the threats that mobile devices currently face and will increasingly have to contend with
in the future, Infineon believes that a solution combining hardware and software security is an
absolute MUST to protect mobile devices. Including a root-of-trust based on certified secure
hardware in the mobile device allows software and applications to rely on this trust anchor. The
mobile device environment would no longer have to rely on the ‘thin ice’ software layer beneath
applications.
As outlined in this white paper, there is a need for a wider security focus in the mobile environment.
More than 25 years of experience in the security industry have allowed Infineon to build up
tremendous security expertise. Within its current OPTIGA™ family portfolio, Infineon already has a
wide range of certified embedded secure hardware solutions such as the Trusted Platform Module
(TPM) and the embedded Secure Element (eSE). A main pillar of these solutions is platform
security, which is currently most commonly realized in the Trusted Platform Module built into
notebooks. As a platform security expert and an established supplier of mobile phone hardware,
Infineon collaborates with the main stakeholders and has the right partnerships in place to drive the
security market toward a future-proof secure mobile platform. The strong knowledge exchange
between Infineon and key players across the entire mobile ecosystem will ensure that the secure
mobile platform fulfills both the technical and security requirements of tomorrow’s mobile world.
Infineon’s vision is that a more secure mobile platform will benefit all stakeholders and will lead to a
more secure environment for mobile devices.
11
White Paper – Infineon Mobile Security Concept
07-01-2015
References
[1] Gartner; Janessa Rivera and Rob van der Meulen: “Gartner Says Annual Smartphone Sales
Surpassed Sales of Feature Phones for the First Time in 2013” seen at:
http://www.gartner.com/newsroom/id/2665715 (released: Feb 13, 2014)
[2] Gartner; Janessa Rivera and Rob van der Meulen: “Gartner Says Worldwide Traditional PC,
Tablet, Ultramobile and Mobile Phone Shipments to Grow 4.2 Percent in 2014” seen at:
http://www.gartner.com/newsroom/id/2791017 (released: Jul 7, 2014)
[3] International Data Corporation (IDC): “Despite a Strong 2013, Worldwide Smartphone Growth
Expected to Slow to Single Digits by 2017, According to IDC” seen at
http://www.idc.com/getdoc.jsp?containerId=prUS24701614 (released Feb 26, 2014)
[4] Infineon Technologies AG, estimation based on: Gartner; Janessa Rivera and Rob van der
Meulen: “Gartner Says Worldwide Traditional PC, Tablet, Ultramobile and Mobile Phone
Shipments to Grow 4.2 Percent in 2014” seen at:
http://www.gartner.com/newsroom/id/2791017 (released: Jul 7, 2014)
International Data Corporation (IDC): “Worldwide Smartphone Shipments Top One Billion Units for
the First Time, According to IDC” seen at:
http://www.idc.com/getdoc.jsp?containerId=prUS24645514 (released Jan 27, 2014) Statista:
“Global smartphone shipments forecast from 2010 to 2018 (in million units)” seen at:
http://www.statista.com/statistics/263441/global-smartphone-shipments-forecast/ (accessed Sep
10, 2014)
[5] Sophos Ltd.: “Sophos Mobile Security Threat Report Launched at Mobile World Congress
2014” seen at: http://www.sophos.com/en-us/medialibrary/PDFs/other/sophos-mobile-securitythreat-report.pdf (accessed on Sep 10, 2014)
[6] DarkreadingInformationWeek, Felix Lederer: “Dissecting Dendroid: An In-Depth Look Inside
An Android RAT Kit” seen at http://www.darkreading.com/vulnerabilities---threats/dissectingdendroid-an-in-depth-look-inside-an-android-rat-kit-/a/d-id/1269208 (released May 28, 2014)
[7] SC Magazine, Danielle Walker: Malicious app BankMirage makes quick appearance in
Google Play.” seen at: http://www.scmagazine.com/malicious-app-bankmirage-makes-quickappearance-in-google-play/article/357861/ (released Jun 25, 2014)
[8] International Data Corporation (IDC): “Smartphone OS market share Q2 2014” seen at:
http://www.idc.com/prodserv/smartphone-os-market-share.jsp (accessed Sep 10, 2014)
[9] Cellular News; Ian Mansfield: “First Android Bootkit Virus Has Infected 350,000 Devices” seen
at: http://www.cellular-news.com/story/Handsets/64127.php (released Jan 28, 2014)
12
White Paper – Infineon Mobile Security Concept
07-01-2015
[10] Spiegel ONLINE International: Marcel Rosenbach, Laura Poitras and Holger Stark: “iSpy:
How the NSA Accesses Smartphone Data” seen at:
http://www.spiegel.de/international/world/how-the-nsa-spies-on-smartphones-including-theblackberry-a-921161.html (released: Sep 9, 2013)
[11] Inquirer Mobile, Aurelia End: “World’s top tech fair opens under a cloud” seen at:
http://services.inquirer.net/mobile/11/03/02/html_output/xmlhtml/20110302-322958xml.html?ModPagespeed=noscript (released Mar 2, 2014)
[12] Infineon Technologies AG, own graphic 2014
13
White Paper – Infineon Mobile Security Concept
07-01-2015
Published by
Infineon Technologies AG
85579 Neubiberg, Germany
© 2015 Infineon Technologies AG.
All Rights Reserved.
Visit us:
www.infineon.com
Order Number: B180-I0095-V1-7600-EU-EC-P
Date: 01 / 2015
ATTENTION PLEASE!
The information given in this document shall in no event
be regarded as a guarantee of conditions or characteristics (“Beschaffenheitsgarantie”). With respect to any
examples or hints given herein, any typical values
stated herein and/or any information regarding the
application of the device, Infineon Technologies hereby
disclaims any and all warranties and liabilities of any
kind, including without limitation warranties of noninfringement of intellectual property rights of any third
party.
INFORMATION
For further information on technology, delivery terms
and conditions and prices please contact your nearest
Infineon Technologies Office (www.infineon.com).
WARNINGS
Due to technical requirements components may contain
dangerous substances. For information on the types in
question please contact your nearest Infineon
Technologies Office. Infineon Technologies Components may only be used in life-support devices or
systems with the express written approval of Infineon
Technologies, if a failure of such components can
reasonably be expected to cause the failure of that lifesupport device or system, or to affect the safety or
effectiveness of that device or system. Life support
devices or systems are intended to be implanted in the
human body, or to support and/or maintain and sustain
and/or protect human life. If they fail, it is reasonable
to assume that the health of the user or other persons
may be endangered.
14

 Download  Report

Paperzz.com

Your Paperzz

© Copyright 2026 Paperzz