Tag: us mobile security

This proposed regulation would allow smartphone users to ask apps to delete their information.

U.S. Representative Hank Johnson (D-Georgia) has proposed mobile security legislation that would make it possible for smartphone users to be able to request that apps cease the collection of their personal data, and that they delete information that has been previously collected about them.

The American lawmaker has released a discussion draft for the change to the current law.

The release was made regarding the Application Privacy, Protection, and Security Act. This proposed bill would require mobile security measures to be taken by all apps, in that they must provide their users with notice about the data that they collect, and they must receive consent from those users before they will be permitted to collect any personal information.

This mobile security proposal would also allow the users to control the information being collected or held.

Beyond simply requiring permission to collect the personal information in the first place, this mobile security measure would also make it possible for users of apps to be able to tell the developer that they will no longer be using the app and that they wish the collection of their information to stop. This would mean that the developers would not only need to cease the collection of the data, and would also have to delete any personal data that has already been collected “to the extent practicable”, said the discussion draft.

Rep. Johnson used the AppRights.us website in order to solicit ideas for the mobile security and privacy bill that he wanted to propose. The website was initially launched in July 2012. He explained in a statement that “Because the majority of the feedback that we received on AppRights expressed strong support for user control, transparency, and security, we incorporated these principles into the bill.”

He also added that “Many of you also told us that simple mechanisms are important to protecting your privacy on mobile devices.” He went on to say that after he had heard the concerns that were raised, he was able to write provisions that would address them in a way that would provide increased mobile security, without threatening the integrity or functionality of the “apps that you love.”

Mobile security continues to be a problematic issue for federal government

Mobile security is quickly becoming a major issue for the U.S. government, especially due to the number of agencies that have a heavy reliance on mobile technology. The federal Chief Information Officers Council, an interagency forum that aims to modernize the federal government, highlights mobile security as an issue that should be receiving more serious attention. The Council notes that several agencies are, indeed, moving ahead with mobile security initiatives, but concerted effort is needed to ensure that the sensitive information that is trafficked through mobile devices on a daily basis does not fall victim to exploitation.

Agency highlights the problems of mobile technology and security efforts

The Chief Information Officers Council highlights technical limitations of mobile devices and their associated services as a major problem for mobile security. The Council suggests that federal agencies must adopt more high-tech mobile devices that can more adequately protect their personal information and that of the government they work for. Moreover, very few security-centric mobile applications are approved for use by federal employees. Standards are currently being developed to help expand the availability of such applications, which the Chief Information Officers Council suggests will be a good way to ensure the security of information.

Gap exists between technology and practice

The lack of encryption modules also presents a serious mobile security risk. It is difficult for software developers to create this kind of software for smart phones and other high-tech mobile devices because of the rapid pace at which these devices are becoming more advanced. Changes to operating systems and smart phone technology have created a significant gap that separates the capabilities of modern mobile security solutions and mobile devices.

Cost remains a problematic hurdle

Cost is one of the reasons why federal agencies have avoided mobile security initiatives in the past. Most federal employees have smart phones and other such devices. In order for some agencies to bolster their mobile security endeavors, they would have to replace all of these mobile devices, which accounts for a massive investment of taxpayer money.