Post on 27-Jan-2017
DUTCH MOBILE .NET DEVELOPERS
XAMARIN REVOLVE16
Agenda• OWASP Mobile Security Threats• Enterprise Mobility Suite (Intune)• Intune SDK
• OWASP Mobile Security Threats
The Open Web Application Security Project• OWASP Top 10
https://www.owasp.org/index.php/Category:OWASP_Top_Ten_Project
• OWASP Top 10 for Mobile 2014https://www.owasp.org/index.php/Projects/OWASP_Mobile_Security_Project_-_Top_Ten_Mobile_Risks
• OWASP Top 10 for Mobile 2016 RChttps://www.owasp.org/index.php/OWASP_Mobile_Security_Project
OWASP Top 10 for Mobile 2016 RC• M1 – Improper Platform Usage• M2 – Insecure Data Storage• M3 – Insecure Communication• M4 – Insecure Authentication• M5 – Insufficient Cryptography• M6 – Insecure Authorization• M7 – Client Code Quality• M8 – Code Tampering• M9 – Reverse Engineering• M10 – Extraneous Functionality
M1 – Improper Platform Usage
M2 – Insecure Data Storage
M3 – Insecure Communication
M4 – Insecure Authentication
M5 – Insufficient Cryptography
M6 – Insecure Authorization
M7 – Client Code QualityM8 – Code Tampering
M9 – Reverse Engineering
M10 – Extraneous Functionality
Mobile Security Threats Percentages
• Enterprise Mobility Suite
Enterprise Mobility Vision
Microsoft IntuneMain possibilities:
• Mobile Device Management (MDM)
• Mobile Application Management (MAM)
• Mobile Application Security
Intune in Microsoft App Development stack
Common scenario’s• Securing your on-premises email and collaboration infrastructure so that it can
be accessed by mobile devices and apps on the Internet
• Enabling your organization to issue hardware to its employees
• Enabling your organization to implement a secure “Bring Your Own Device (BYOD)” or personal device strategy
Demo• Add user
• Enable device management
• Create a policy
• Intune SDK
Intune SDK Possibilities• Manage different app parts with Microsoft Intune
• Available for iOS, Android, Xamarin (Forms) & Cordova
• Easy to integrate in a existing app
• When activated protect corporate data
How it works• The SDK is in the app.
• Intune sends policies to the app.
• Based on these policies the SDK might change the behavior.
• The SDK will do nothing if the device or app is not managed.
Control users’ ability to move documents
Configure clipboard restrictions
Configure screen capture restrictions
Enforce encryption on saved data
Remotely wipe corporate data
Enforce the use of a managed browser
Enforce a PIN policy
Require users to enter credentials
Check device health and compliance
Different Management configurationsSDK can work with:
• Mobile Device Management (MDM)
• Devices without MDM (MAM)
Demo• Enable the Intune SDK in iOS
Where to go from hereXamarin Evolve Sessions:• Addressing the OWASP Mobile Security Threats Using Xamarin
https://evolve.xamarin.com/session/56e1ff1efd00c0253cae339e• Enterprise Mobility: Keep It Safe
https://evolve.xamarin.com/session/56ec8771790aae283cca279e• Think Like a Hacker!
https://evolve.xamarin.com/session/56ec3cd4de91c6253c277bc0
Trial accounts:• Getting started with Enterprise Mobility Suite
https://www.microsoft.com/en-us/server-cloud/enterprise-mobility/ems-trial.aspx• Start with Microsoft Intune
https://www.microsoft.com/en-us/server-cloud/products/microsoft-intune/default.aspx• Azure Active Directory federation compatibility list
https://msdn.microsoft.com/en-us/library/azure/jj679342.aspx
Questions?
ENGINEER YOUR FUTURE TODAY
www.macaw.nl