Software installed on mobile devices to provide specific functionality.
Differences from Websites
| Feature | Websites | Mobile Apps |
|---|---|---|
| Connectivity | Required | Sometimes offline |
| Device access | Limited | Can access camera, contacts |
| Updates | Immediate | Requires device connection |
| Execution | Browser-based | Background processes possible |
The distinction is shrinking as new web standards are adopted.
Mobile Device Security Risks
Risk Factors
- Highly portable, easily lost or stolen.
- Large volume of personal data stored on-device.
- Third-party apps with unchecked behaviour.
- Limited security awareness among users.
Potential Damage
- Loss of confidential data.
- Financial theft.
- Device theft or loss.
- Data corruption.
Mobile App Vulnerabilities
Excessive Permissions
Apps often request broad access beyond what functionality requires:
- camera
- storage
- contacts
Opaque Functionality
Users cannot observe what an app does internally.
Provider Interests
Many apps collect user data for commercial purposes, independent of stated features.
Feature-Driven Development
Users tend to choose feature-rich apps over secure ones.
Secure App Usage
- Install apps from trusted stores only.
- Keep apps updated.
- Avoid jailbreaking or rooting devices.
- Limit app permissions to what is strictly necessary.