Mobility Security

Overview

By 2013, mobile phones will overtake PCs as the most common web access device worldwide. As the numbers grow, security breaches will be inevitable. Vulnerabilities, design flaws, protocol failures in any component of mobile applications, mobile devices and mobile infra components can directly impact the security. Hence taking a holistic view of mobile security and its components is critical.

 

Why Aujas?

The Aujas mobile security services help organizations to deploy secure mobile applications on different platforms and environments. Our secure design methodology for mobile applications, extensive experience in cryptography help clients secure data storage, securely deploy protocols like SMS, USSD, 3G, GPRS and WAP and reduce software re-engineering and compliance costs in the mobility era.

 

Services we offer

Our Mobile Security Services assist you in assessing and securing your mobile applications, App Stores, payment services products, USSD apps and Mobile devices.

 

Mobile Application Security

Test for vulnerabilities in your mobile application by mobile application’s penetration testing (black/gray box), secure code review, reverse engineering and API’s security testing. We also help to remediate the vulnerabilities.

 

Mobile Application Store Security

Security assessment for Internal Apps, External Apps, Open API’s (used to interface external and internal apps in App Store), secure code review, malicious patterns verifications, device OS and dependent Telco’s components security assessment.

 

Mobile Payment & Banking Security

Security assessment of Mobile Payment & Banking applications, secure code review, reverse engineering, payment gateways and application API/interfaces’ security assessment.

 

USSD/DSTK Application Security

Security assessment for USSD/DSTK Applications, USSD Gateways, USSD Application Server Frameworks, secure code review, USSD log analysis, USSD based payment application’s PCI-DSS and payment forum’s compliance pre-audit.

 

Enterprise Mobile Data Management Services

Help clients for enterprise data fragmentation; Access Control for critical business data; access control for business applications usage; Mobile Content Management; Data storage encryption and authentication for fragmentized data.

 

Mobile Device Security

In this service, we perform Mobile Device’s security configuration review (Secure access control, anti-virus, browser and Applications security and security manager’s customized security settings); prepare customized device security policies and user awareness programs; security assessment of Mobile Platform and OS (Android, iOS, Symbian, Blackberry, J2ME and BADA).

 

Success Stories

 

Aujas helps Leading Mobile Software provider with Mobile Security services

The client wanted to develop strong controls to test and validate the security posture of the application before it is deployed to the UAT and production. Aujas was responsible to handle the entire application stack security, which is part of the Risk Management and perform Security Awareness Training to newly joined employees too. The delivery model resulted into implementation of strong controls before the software could be deployed.

 

Aujas helps Leading Mobile Software Provider with Security services

The client wanted to implement strong controls for their Mobile application before deployment to production. Aujas designed the entire application stack security given the limitations of mobile resources as part of the Risk Management framework. The client was able to roll out a secure mobile application and mobile service due to the strong controls designed into before the software was deployed.

 

Aujas provides Mobile Application Security services for Leading European FMCG provider

The client wanted to rollout a mobile inventory management system across all its 6000 dealers and wanted to ensure the security of the entire solution. Aujas consultants did a threat modeling of the mobile application and identified security vulnerabilities within the application and the mobile ecosystem. Aujas also assessed the IT controls in the application, to ensure no inadvertent use. The client was able to fix the vulnerabilities and rollout the solution securely across the entire country.