SlideShare a Scribd company logo

IoT, PoS and Mobile Devices different names same privacy and information security concerns

Roberto Martelloni, profile picture
Roberto Martelloni

Roberto Martelloni's presentation at the Digital Banking and Mobile Payments Summit discussed the Internet of Things (IoT), point of sale (POS) systems, and mobile devices, highlighting their similarities in terms of information security and privacy concerns. The agenda covered overviews of each technology, common security threats, and their operational frameworks. Martelloni emphasized the need for secure protocols and cloud connectivity across these seemingly different but interrelated technologies.

Technology
Related topics:
Information Security
1 of 45
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
1 Roberto Martelloni, Digital Banking and Mobile Payments Summit, April 2017, Vienna CI IoT, Point Of Sales And Mobile devices different names, same Information Security & Privacy concerns
22 WHO AM I? Roberto Martelloni VP, Global Mobile Security @ CITI COBIT®5(F), CISM, CISSP, CCSP, CSSLP, CSPO, CSM certified with 17 years of professional experience in Information and Cyber Security Experience ranging from a startup to mastodontic corporations, from niche sectors (lawful interception) to economy driving areas (Defence, Oil and Gas, and Finance) and also to the North Atlantic Treaty Organization (NATO).
33 WHAT AM I GOING TO TALK ABOUT? IoT, Point of Sale, and Mobile How these three apparent different fields are instead very similar What they share in term of information security and privacy concerns
44 AGENDA 1. IoT technology overview 2. Point of Sale technology overview 3. Mobile technology overview 4. Differences and similarities 5. Common Information security and privacy concerns 6. Questions
55 WHAT IS AN INTERNET OF THING? The Internet of things (IoT) is the internetworking of physical devices, vehicles (also referred to as "connected devices" and "smart devices"), buildings, and other items— embedded with electronics, software, sensors, actuators, and network connectivity that enable these objects to collect and exchange data. (Wikipedia)
66 IoT - WEARABLE Apple Watch LG Watch
77 IoT - SMART HOME
88 IoT - SMART HOME Nest Learning Thermostat Honeywell Smart Thermostat
99 IoT - SMART OFFICE Axessor IP LOCK Ucam 247
1010 IoT - SMART TOYS (!) CloudPets
1111 IoT - UNDER THE HOOD
1212 IoT - OPERATING SYSTEM IoT Developer Survey 2016 (Eclipse IoT Working Group, IEEE IoT and AGILE IoT)
1313 IoT - PROTOCOLS Few words on Peripherals IoT Developer Survey 2016 (Eclipse IoT Working Group, IEEE IoT and AGILE IoT)
1414 IoT - CLOUD Few words on Peripherals IoT Developer Survey 2016 (Eclipse IoT Working Group, IEEE IoT and AGILE IoT)
1515 WHAT IS AN INTERNET OF THING? Device + Common operating system + Common or less common protocols + Cloud + Exotic Input/Output peripherals = Internet of things (Roberto)
1616 WHAT IS AN INTERNET OF THING (DETAILS) # IoT Software Operating System Linux Hardening No Framework Custom Cloud Yes Wire Serial Maybe Ethernet Yes USB Maybe Wireless GPS Maybe Cellular Maybe Wi-Fi Yes Bluetooth Maybe NFC Maybe Peripherals Card Reader Maybe Biometric Maybe Exotic I/O peripherals Yes
1717 WHAT IS A POINT OF SALE? A payment terminal, also known as a point of sale terminal (PoS), credit card terminal, EFTPOS terminal (or a PDQ terminal in the United Kingdom), is a device which interfaces with payment cards to make electronic funds transfers. (Wikipedia)
1818 POINT OF SALE – BIGGEST PLAYERS
1919 POINT OF SALE DESK 5000 P400
2020 MOBILE POINT OF SALE iSMP4 e355
2121 POINT OF SALE – UNDER THE HOOD
2222 POINT OF SALE - OPERATING SYSTEM +
2323 POINT OF SALE - SECURITY
2424 POINT OF SALE - PROTOCOLS
2525 POINT OF SALE - CLOUD: MARKETPLACE and APPS https://www.ingenico.com/marketplace
2626 WHAT IS A POINT OF SALE? Device (with hardening!) + Common operating system (with hardening!) + Common protocols + Cloud + Input/Output peripherals = Point of Sale (Roberto)
2727 WHAT IS A POINT OF SALE (DETAILS) # Point of Sale Software Operating System Linux Hardening Yes Framework Custom Cloud Yes Wire Serial Maybe Ethernet Yes USB Yes Wire GPS No Cellular Maybe Wi-Fi Yes Bluetooth Yes NFC Yes Peripherals Card Reader Yes Biometric No Exotic I/O peripherals No
2828 WHAT IS A MOBILE DEVICE? A small computing device, having an operating system capable of running mobile apps, a display screen, alphanumeric keyboard or a touchscreen and buttons (icons) on-screen. Many such devices can connect to the Internet and other devices via Wi-Fi, Bluetooth or near field communication (NFC). Integrated cameras, digital media players, mobile phone and GPS capabilities. (Wikipedia)
2929 WHAT IS A MOBILE DEVICE? Google Pixel
3030 WHAT IS A MOBILE DEVICE? Few Mobile Device pictures and market overview Pixel C
3131 WHAT IS A MOBILE DEVICE? HUAWEI MediaPad M3 HUAWEI MediaPad T1
3232 MOBILE - UNDER THE HOOD
3333 MOBILE - OPERATING SYSTEM Android iOS
3434 MOBILE - OPERATING SYSTEM Linux BSD (Unix)
3535 MOBILE - OPERATING SYSTEM: EXPLOIT MARKET https://www.zerodium.com/program.html
3636 MOBILE - PROTOCOLS
3737 MOBILE - CLOUD
3838 WHAT IS A MOBILE DEVICE? Device + Common operating system (with super hardening!) + Common protocols + Cloud (!) + Input/Output peripherals = Mobile Device (Roberto)
3939 WHAT IS A MOBILE DEVICE (DETAILS) # Mobile Software Operating System Linux / Unix Hardening Yes Framework Android / iOS Cloud Yes Wire Serial No Ethernet No USB Yes Wire GPS Yes Cellular Yes Wi-Fi Yes Bluetooth Yes NFC Yes Peripherals Card Reader No Biometric Yes Exotic I/O peripherals No
4040 IoT, PoS and Mobile - UNDER THE HOOD
4141 WHAT ARE IoT, PoS and MOBILE DEVICE? Device + Common operating system + Common protocols + Cloud + Input/Output peripherals = IoT, PoS, and Mobile Device (Roberto)
4242 IOT, POINT OF SALE, MOBILE COMPARISON # IoT Point of Sale Mobile Software Operating System Linux Linux Linux / Unix Hardening No Yes Yes Framework Custom Custom Android / iOS Cloud Yes Maybe Yes Wire Serial Maybe Maybe No Ethernet Yes Yes No USB Maybe Yes Yes Wireless GPS Maybe No Yes Cellular Maybe Maybe Yes Wi-Fi Yes Yes Yes Bluetooth Maybe Yes Yes NFC Maybe Yes Yes Peripherals Card Reader Maybe Yes No Biometric Maybe No Yes Exotic I/O peripherals Yes No No
4343 INFORMATION SECURITY NISTIR 8144 Assessing Threats to Mobile Devices & Infrastructure Mobile Threat Catalogue
4444 MOBILE - THREAT CATALOGUE CATEGORIES Physical Access Technology Stack Application Authentication EMM Ecosystem GPS Cellular LAN & PAN Payment Supply Chain
45 THANK YOU! Email: roberto.martelloni@citi.com

More Related Content

PDF
Zinnov Zones for IoT Services 2017
Zinnov
 
PPTX
Iot basics & evolution of 3 gpp technolgies for iot connectivity
KAILASH CHAUHAN
 
PDF
M2M transitioning to IoT opportunity for telcos. Success references.
Pedro Menendez-Valdes
 
PDF
IoT Convention Europe - Mechelen June 15th 2017
AllBits BVBA (freelancer)
 
PPTX
Connected Futures Cisco Research: IoT Value: Challenges, Breakthroughs, and B...
Connected Futures
 
PDF
Oies IoT World Europe 20170615
Francisco Maroto
 
PDF
Industry 4.0 Smart Factory IoT Solutions- building the digital enterprise to ...
Solution Analysts
 
PPTX
Internet of things cisco
moldovaictsummit2016
 
Zinnov Zones for IoT Services 2017
Zinnov
 
Iot basics & evolution of 3 gpp technolgies for iot connectivity
KAILASH CHAUHAN
 
M2M transitioning to IoT opportunity for telcos. Success references.
Pedro Menendez-Valdes
 
IoT Convention Europe - Mechelen June 15th 2017
AllBits BVBA (freelancer)
 
Connected Futures Cisco Research: IoT Value: Challenges, Breakthroughs, and B...
Connected Futures
 
Oies IoT World Europe 20170615
Francisco Maroto
 
Industry 4.0 Smart Factory IoT Solutions- building the digital enterprise to ...
Solution Analysts
 
Internet of things cisco
moldovaictsummit2016
 

What's hot (20)

PDF
IoT: Understanding its potential and what makes it tick! by Mark Torr
Bosnia Agile
 
PDF
C white cisco_livecancun_nov_press
Felipe Lamus
 
PDF
Oracle Digital Business Transformation and Internet of Things by Ermin Prašović
Bosnia Agile
 
PDF
PRG Symposium From Idea to Scale vF
Alex Blanter
 
PDF
Zinnov 2015 Quarterly PES Landscape Analysis - (Q1)
Zinnov
 
PDF
Keynote Presentation by Pablo Iacopino, GSMA Intelligence: 5G is coming – But...
The GSMA
 
PPTX
Industrial IOT By Rishika Ghosh
rishika ghosh
 
PDF
Opening keynote by Peter Jarich, GSMA Intelligence: GSMA Intelligence 2.0 – D...
The GSMA
 
PPTX
Cisco Mobility - IBM & IDC event
Matteo Masi
 
PPTX
Revolutionize your business with the Industrial Internet of Things ( IIoT) - ...
CTOBuddy.com
 
PDF
IoT Slam Keynote: The Rise of the IoT Application with Chris O'Connor
IBM Internet of Things
 
PPTX
The Internet of Things - beyond the hype and towards ROI
Perry Lea
 
PDF
IoT and Embedded OS Lecture - Cristian Toma and George Iosif
IT&C Security Master Informatics Security Master
 
PDF
GSMA Intelligence Webinar - 27 November 2018
The GSMA
 
PPTX
IoT now: From Things to Outcomes
Cisco Jasper
 
PDF
IoT and AI
Karim Hashem
 
PPTX
É possível existir segurança para IoT?
Anchises Moraes
 
PDF
Gartner TOP 10 Strategic Technology Trends 2017
Den Reymer
 
PPTX
2016 IoT Insights and Opportunities
CompTIA
 
PDF
[Webinar] – Social Distancing Radar: Smart AI Solution to Restart Your Business
JK Tech
 
IoT: Understanding its potential and what makes it tick! by Mark Torr
Bosnia Agile
 
C white cisco_livecancun_nov_press
Felipe Lamus
 
Oracle Digital Business Transformation and Internet of Things by Ermin Prašović
Bosnia Agile
 
PRG Symposium From Idea to Scale vF
Alex Blanter
 
Zinnov 2015 Quarterly PES Landscape Analysis - (Q1)
Zinnov
 
Keynote Presentation by Pablo Iacopino, GSMA Intelligence: 5G is coming – But...
The GSMA
 
Industrial IOT By Rishika Ghosh
rishika ghosh
 
Opening keynote by Peter Jarich, GSMA Intelligence: GSMA Intelligence 2.0 – D...
The GSMA
 
Cisco Mobility - IBM & IDC event
Matteo Masi
 
Revolutionize your business with the Industrial Internet of Things ( IIoT) - ...
CTOBuddy.com
 
IoT Slam Keynote: The Rise of the IoT Application with Chris O'Connor
IBM Internet of Things
 
The Internet of Things - beyond the hype and towards ROI
Perry Lea
 
IoT and Embedded OS Lecture - Cristian Toma and George Iosif
IT&C Security Master Informatics Security Master
 
GSMA Intelligence Webinar - 27 November 2018
The GSMA
 
IoT now: From Things to Outcomes
Cisco Jasper
 
IoT and AI
Karim Hashem
 
É possível existir segurança para IoT?
Anchises Moraes
 
Gartner TOP 10 Strategic Technology Trends 2017
Den Reymer
 
2016 IoT Insights and Opportunities
CompTIA
 
[Webinar] – Social Distancing Radar: Smart AI Solution to Restart Your Business
JK Tech
 
Ad

Similar to IoT, PoS and Mobile Devices different names same privacy and information security concerns (20)

PPTX
Internet Of Things What You Need To Know - TechFuse
Richard Harbridge
 
PPTX
Emerging Global Trends in IoT (Internet of things)
ShishupalSharma8
 
DOCX
INST560, Internet of Things (IoT)UNIVERSITY OF NORTH AMERICA.docx
pauline234567
 
PDF
Enterprise IT and the Internet of Things
Joint Venture Silicon Valley
 
PPTX
Compiler design presentaion
MdShahinAlam25
 
PPTX
02_Internet-of-things-IOT-by-Davis-M-Onsakia_ISOC-IoT-SIG.pptx
ssuserc5ee4c
 
PPTX
02_Internet-of-things-IOT-by-Davis-M-Onsakia_ISOC-IoT-SIG.pptx
MdSamsuzzamanSobuz
 
PPTX
02_Internet-of-things-IOT-by-Davis-M-Onsakia_ISOC-IoT-SIG.pptx
Janasudhan1
 
PPTX
02_Internet-of-things-IOT-by-Davis-M-Onsakia_ISOC-IoT-SIG.pptx
SourajitMaity1
 
PPTX
02_Internet-of-things-IOT-by-Davis-M-Onsakia_ISOC-IoT-SIG.pptx
philcrocker31
 
PDF
IoTShow.in Bangalore 2019 - a Recap on 'IoT and Edge' Talk.
Krishna-Kumar
 
PPTX
IOT . .
syazhinian
 
PPT
IoTConcept&Architecture.grt kerning gud to seeppt
rohitbansal761378
 
PPTX
iotskppt on internet of things for information.pptx
smkhot2402
 
PDF
IoT: The T is for Telco, Isn't it?
Francisco J. Jariego, PhD.
 
PPTX
Iot trends and technologies development in terms of Machine Learning
Dr.R. Gunavathi Ramasamy
 
PDF
Avnet Silica at SIDO Lyon
WillDavies22
 
PDF
Top 10 trends of internet of things in 2020
Claritus Consulting
 
PPTX
Introduction Internet of Things (IoT).pptx
ftcdkfhbps
 
PDF
Internet of Things - The Battle for your Home, Commute, and Life
Abhay Aggarwal
 
Internet Of Things What You Need To Know - TechFuse
Richard Harbridge
 
Emerging Global Trends in IoT (Internet of things)
ShishupalSharma8
 
INST560, Internet of Things (IoT)UNIVERSITY OF NORTH AMERICA.docx
pauline234567
 
Enterprise IT and the Internet of Things
Joint Venture Silicon Valley
 
Compiler design presentaion
MdShahinAlam25
 
02_Internet-of-things-IOT-by-Davis-M-Onsakia_ISOC-IoT-SIG.pptx
ssuserc5ee4c
 
02_Internet-of-things-IOT-by-Davis-M-Onsakia_ISOC-IoT-SIG.pptx
MdSamsuzzamanSobuz
 
02_Internet-of-things-IOT-by-Davis-M-Onsakia_ISOC-IoT-SIG.pptx
Janasudhan1
 
02_Internet-of-things-IOT-by-Davis-M-Onsakia_ISOC-IoT-SIG.pptx
SourajitMaity1
 
02_Internet-of-things-IOT-by-Davis-M-Onsakia_ISOC-IoT-SIG.pptx
philcrocker31
 
IoTShow.in Bangalore 2019 - a Recap on 'IoT and Edge' Talk.
Krishna-Kumar
 
IOT . .
syazhinian
 
IoTConcept&Architecture.grt kerning gud to seeppt
rohitbansal761378
 
iotskppt on internet of things for information.pptx
smkhot2402
 
IoT: The T is for Telco, Isn't it?
Francisco J. Jariego, PhD.
 
Iot trends and technologies development in terms of Machine Learning
Dr.R. Gunavathi Ramasamy
 
Avnet Silica at SIDO Lyon
WillDavies22
 
Top 10 trends of internet of things in 2020
Claritus Consulting
 
Introduction Internet of Things (IoT).pptx
ftcdkfhbps
 
Internet of Things - The Battle for your Home, Commute, and Life
Abhay Aggarwal
 
Ad

Recently uploaded (20)

PPTX
A Presentation on Artificial Intelligence
memembruh336
 
PDF
Heart disease approach using modified random forest and particle swarm optimi...
IAESIJAI
 
PDF
Univ-Connecticut-ChatGPT-Presentaion.pdf
ry7r52mzb4
 
PDF
Hindi spoken digit analysis for native and non-native speakers
IAESIJAI
 
PDF
Getting Started with Data Integration: FME Form 101
Safe Software
 
PDF
7 ChatGPT Prompts to Help You Define Your Ideal Customer Profile.pdf
SOFTTECHHUB
 
PDF
project resource management chapter-09.pdf
ssuser00e6e21
 
PPTX
Group 1 Presentation -Planning and Decision Making .pptx
MatthewLewis227954
 
PPTX
SOPHOS-XG Firewall Administrator PPT.pptx
AgnesMunisi
 
PPTX
A Presentation on Touch Screen Technology
memembruh336
 
PPTX
cloud_computing_Infrastucture_as_cloud_p
mainakbhattacharya20
 
PDF
Encapsulation theory and applications.pdf
gurumoop
 
PPTX
1. Introduction to Computer Programming.pptx
bonakiduza1024
 
PDF
Building Integrated photovoltaic BIPV_UPV.pdf
SandeepSingh286037
 
PDF
A comparative study of natural language inference in Swahili using monolingua...
IAESIJAI
 
PPTX
Programs and apps: productivity, graphics, security and other tools
4mqw9zch22
 
PDF
Zenith AI: Advanced Artificial Intelligence
Biz Preneurs
 
PDF
Hybrid model detection and classification of lung cancer
IAESIJAI
 
PDF
Encapsulation_ Review paper, used for researhc scholars
gurumoop
 
PDF
Mushroom cultivation and it's methods.pdf
mailmeonrishi
 
A Presentation on Artificial Intelligence
memembruh336
 
Heart disease approach using modified random forest and particle swarm optimi...
IAESIJAI
 
Univ-Connecticut-ChatGPT-Presentaion.pdf
ry7r52mzb4
 
Hindi spoken digit analysis for native and non-native speakers
IAESIJAI
 
Getting Started with Data Integration: FME Form 101
Safe Software
 
7 ChatGPT Prompts to Help You Define Your Ideal Customer Profile.pdf
SOFTTECHHUB
 
project resource management chapter-09.pdf
ssuser00e6e21
 
Group 1 Presentation -Planning and Decision Making .pptx
MatthewLewis227954
 
SOPHOS-XG Firewall Administrator PPT.pptx
AgnesMunisi
 
A Presentation on Touch Screen Technology
memembruh336
 
cloud_computing_Infrastucture_as_cloud_p
mainakbhattacharya20
 
Encapsulation theory and applications.pdf
gurumoop
 
1. Introduction to Computer Programming.pptx
bonakiduza1024
 
Building Integrated photovoltaic BIPV_UPV.pdf
SandeepSingh286037
 
A comparative study of natural language inference in Swahili using monolingua...
IAESIJAI
 
Programs and apps: productivity, graphics, security and other tools
4mqw9zch22
 
Zenith AI: Advanced Artificial Intelligence
Biz Preneurs
 
Hybrid model detection and classification of lung cancer
IAESIJAI
 
Encapsulation_ Review paper, used for researhc scholars
gurumoop
 
Mushroom cultivation and it's methods.pdf
mailmeonrishi
 

IoT, PoS and Mobile Devices different names same privacy and information security concerns

  • 1. 1 Roberto Martelloni, Digital Banking and Mobile Payments Summit, April 2017, Vienna CI IoT, Point Of Sales And Mobile devices different names, same Information Security & Privacy concerns
  • 2. 22 WHO AM I? Roberto Martelloni VP, Global Mobile Security @ CITI COBIT®5(F), CISM, CISSP, CCSP, CSSLP, CSPO, CSM certified with 17 years of professional experience in Information and Cyber Security Experience ranging from a startup to mastodontic corporations, from niche sectors (lawful interception) to economy driving areas (Defence, Oil and Gas, and Finance) and also to the North Atlantic Treaty Organization (NATO).
  • 3. 33 WHAT AM I GOING TO TALK ABOUT? IoT, Point of Sale, and Mobile How these three apparent different fields are instead very similar What they share in term of information security and privacy concerns
  • 4. 44 AGENDA 1. IoT technology overview 2. Point of Sale technology overview 3. Mobile technology overview 4. Differences and similarities 5. Common Information security and privacy concerns 6. Questions
  • 5. 55 WHAT IS AN INTERNET OF THING? The Internet of things (IoT) is the internetworking of physical devices, vehicles (also referred to as "connected devices" and "smart devices"), buildings, and other items— embedded with electronics, software, sensors, actuators, and network connectivity that enable these objects to collect and exchange data. (Wikipedia)
  • 6. 66 IoT - WEARABLE Apple Watch LG Watch
  • 8. 88 IoT - SMART HOME Nest Learning Thermostat Honeywell Smart Thermostat
  • 9. 99 IoT - SMART OFFICE Axessor IP LOCK Ucam 247
  • 10. 1010 IoT - SMART TOYS (!) CloudPets
  • 11. 1111 IoT - UNDER THE HOOD
  • 12. 1212 IoT - OPERATING SYSTEM IoT Developer Survey 2016 (Eclipse IoT Working Group, IEEE IoT and AGILE IoT)
  • 13. 1313 IoT - PROTOCOLS Few words on Peripherals IoT Developer Survey 2016 (Eclipse IoT Working Group, IEEE IoT and AGILE IoT)
  • 14. 1414 IoT - CLOUD Few words on Peripherals IoT Developer Survey 2016 (Eclipse IoT Working Group, IEEE IoT and AGILE IoT)
  • 15. 1515 WHAT IS AN INTERNET OF THING? Device + Common operating system + Common or less common protocols + Cloud + Exotic Input/Output peripherals = Internet of things (Roberto)
  • 16. 1616 WHAT IS AN INTERNET OF THING (DETAILS) # IoT Software Operating System Linux Hardening No Framework Custom Cloud Yes Wire Serial Maybe Ethernet Yes USB Maybe Wireless GPS Maybe Cellular Maybe Wi-Fi Yes Bluetooth Maybe NFC Maybe Peripherals Card Reader Maybe Biometric Maybe Exotic I/O peripherals Yes
  • 17. 1717 WHAT IS A POINT OF SALE? A payment terminal, also known as a point of sale terminal (PoS), credit card terminal, EFTPOS terminal (or a PDQ terminal in the United Kingdom), is a device which interfaces with payment cards to make electronic funds transfers. (Wikipedia)
  • 18. 1818 POINT OF SALE – BIGGEST PLAYERS
  • 20. 2020 MOBILE POINT OF SALE iSMP4 e355
  • 21. 2121 POINT OF SALE – UNDER THE HOOD
  • 22. 2222 POINT OF SALE - OPERATING SYSTEM +
  • 23. 2323 POINT OF SALE - SECURITY
  • 24. 2424 POINT OF SALE - PROTOCOLS
  • 25. 2525 POINT OF SALE - CLOUD: MARKETPLACE and APPS https://www.ingenico.com/marketplace
  • 26. 2626 WHAT IS A POINT OF SALE? Device (with hardening!) + Common operating system (with hardening!) + Common protocols + Cloud + Input/Output peripherals = Point of Sale (Roberto)
  • 27. 2727 WHAT IS A POINT OF SALE (DETAILS) # Point of Sale Software Operating System Linux Hardening Yes Framework Custom Cloud Yes Wire Serial Maybe Ethernet Yes USB Yes Wire GPS No Cellular Maybe Wi-Fi Yes Bluetooth Yes NFC Yes Peripherals Card Reader Yes Biometric No Exotic I/O peripherals No
  • 28. 2828 WHAT IS A MOBILE DEVICE? A small computing device, having an operating system capable of running mobile apps, a display screen, alphanumeric keyboard or a touchscreen and buttons (icons) on-screen. Many such devices can connect to the Internet and other devices via Wi-Fi, Bluetooth or near field communication (NFC). Integrated cameras, digital media players, mobile phone and GPS capabilities. (Wikipedia)
  • 29. 2929 WHAT IS A MOBILE DEVICE? Google Pixel
  • 30. 3030 WHAT IS A MOBILE DEVICE? Few Mobile Device pictures and market overview Pixel C
  • 31. 3131 WHAT IS A MOBILE DEVICE? HUAWEI MediaPad M3 HUAWEI MediaPad T1
  • 33. 3333 MOBILE - OPERATING SYSTEM Android iOS
  • 34. 3434 MOBILE - OPERATING SYSTEM Linux BSD (Unix)
  • 35. 3535 MOBILE - OPERATING SYSTEM: EXPLOIT MARKET https://www.zerodium.com/program.html
  • 38. 3838 WHAT IS A MOBILE DEVICE? Device + Common operating system (with super hardening!) + Common protocols + Cloud (!) + Input/Output peripherals = Mobile Device (Roberto)
  • 39. 3939 WHAT IS A MOBILE DEVICE (DETAILS) # Mobile Software Operating System Linux / Unix Hardening Yes Framework Android / iOS Cloud Yes Wire Serial No Ethernet No USB Yes Wire GPS Yes Cellular Yes Wi-Fi Yes Bluetooth Yes NFC Yes Peripherals Card Reader No Biometric Yes Exotic I/O peripherals No
  • 40. 4040 IoT, PoS and Mobile - UNDER THE HOOD
  • 41. 4141 WHAT ARE IoT, PoS and MOBILE DEVICE? Device + Common operating system + Common protocols + Cloud + Input/Output peripherals = IoT, PoS, and Mobile Device (Roberto)
  • 42. 4242 IOT, POINT OF SALE, MOBILE COMPARISON # IoT Point of Sale Mobile Software Operating System Linux Linux Linux / Unix Hardening No Yes Yes Framework Custom Custom Android / iOS Cloud Yes Maybe Yes Wire Serial Maybe Maybe No Ethernet Yes Yes No USB Maybe Yes Yes Wireless GPS Maybe No Yes Cellular Maybe Maybe Yes Wi-Fi Yes Yes Yes Bluetooth Maybe Yes Yes NFC Maybe Yes Yes Peripherals Card Reader Maybe Yes No Biometric Maybe No Yes Exotic I/O peripherals Yes No No
  • 43. 4343 INFORMATION SECURITY NISTIR 8144 Assessing Threats to Mobile Devices & Infrastructure Mobile Threat Catalogue
  • 44. 4444 MOBILE - THREAT CATALOGUE CATEGORIES Physical Access Technology Stack Application Authentication EMM Ecosystem GPS Cellular LAN & PAN Payment Supply Chain