IPad’s Security Loopholes
For one, if the iPad employs encryption the same way the iPhone does, sensitive personal data, including phone numbers and e-mail addresses, could be retrieved and viewed, says Daniel Hoffman, chief technology officer at SMobile Systems, which sells mobile security software. “The problem with the iPhone security encryption is it is fundamentally worthless,” he said. “It can be easily bypassed.” Secondly, if iPad users get their apps from the Apps Store, they are at risk of getting the occasional bad apple, Hoffman said, noting that there have been malicious apps found in the store. In addition, the device is subject to man-in-the-middle attacks like any other device that uses unsecured Wi-Fi networks is, he said. SMobile is developing a tool to protect against such attacks, in which someone is able to intercept Internet traffic mobile devices send over Wi-Fi networks and inject new messages while masquerading as a legitimate party in the communication. The iPad also should have management capabilities, like the option of using a PIN or passcode, and remote lock or wipe in case of loss or theft, he said. The iPhone offers a service to help locate lost devices and provide remote wipe, but it’s pricey at about US$100 per year.
