Aptica Software & Mobile Security

(1)

Aptica – Software & Mobile Security

Andrew Brown

Managing Director

Aptica Limited

Cyber Security Showcase, UKTI & Cyber Security KTN Event

Brussels, 29

th

_{February 2012}

(2)

About Aptica

• Founded in June 2010 by Andrew & Pamela Brown

• Reason:

For any computer security vulnerability to be

exploited, software must execute

• Based at Bletchley Park, with 5 full-time employees

• Foci:

–

Mobile Device Security

–

Software Certification

–

Information Assurance

(3)

About Aptica

• Customers:

(4)

Aptica Technology Services

• Secure Software Development

–

Analysis, design, implementation and testing to ensure:

–

Code quality, security, usability, maintainability,

traceability

–

Main focus is mobile applications and field work solutions

• Assurance & Certification

–

Verification of author claims; ISO-27034/27051; ISO-9241

–

Independent, product/vendor-agnostic approach

• Security Technology Incubation

–

Foreground IP development and technology transition

(5)

Example Customer Requirements

• Mobile applications security

• Remote working solutions with geo-location features

• Digital media, brand and IP protection

• Cloud computing security solutions; data protection

• Trusted and trustworthy computing solutions

• Secure programming principles and practice

• Network and end-point protection software

(6)

Secure Software Development

• Bridging the gap between early-stage technology and

early adopters. Security ‘built-in’ from inception:

–

Application & code base security enhancement

–

Maturity enhancement and development

–

User profiling and GUI development

–

System interface & integration development

–

Capability demonstrations

–

Process and technical support

(7)

AppSure

• A next-generation anti-virus technology for mobile

phones and tablet PCs; protects against rogue apps

• Targets mobile application downloads, and ensures

they execute in a trustworthy manner

• Applications:

–

Securing third-party mobile applications for end-users

–

Enterprise mobile device security solutions

–

Toolkits for application developers and mobile vendors

–

Promoting and distributing mobile apps based on security

Formal launch at InfoSecurity Europe

2012 – London; 24

th

_April

(8)

Mobile Apps Security Arena

• >800m smartphones and tablet PCs worldwide

–

AppSure targets 665m devices (October 2011)

• 85% year on year growth predicted for smartphones

• IBM predict 1 trillion mobile devices globally by 2015

• Incomplete protection coverage currently offered:

–

Mobile malware grew by 1400% in 2011

–

Average user has 35-49 apps on their mobile device

–

Centralised stores of critical information developing

–

Anti-virus solutions are not effective in mobile context

• Render software unusable; high vendor overheads; obfuscation

(9)

Technical Overview

• AppSure identifies malicious events within software

and separates these from legitimate functions

• Over time, insecure mobile applications are

automatically re-engineered into secure ones

• Novelties:

–

Prevents and remediates harmful behaviours in real-time

–

Neutralises malware, reducing recovery time and cost

–

Context-aware: more precise than existing tools

–

Applications can be used for their primary purpose

(10)

(11)

(12)

(13)

End-User Benefits

• Mobile application security can be guaranteed

• Applications are usable for their main purpose

• User confidence increases through use of AppSure

• AppSure can build libraries of secure applications

• Organisations have full control over third-party

software and employees’ devices

–

AppSure helps to mitigate the mobile relationship

between the organisation and the employee

(14)

Summary

• Attacks on mobile devices are quite clearly

increasing

• Many users trust their devices with their most

valuable information

• Most have little or no protection against malicious or

defective application software

• Requirement - comprehensive defence mechanisms

in place prior to an attack, not afterwards

(15)

(16)

Thank you for listening

Aptica Limited

Science and Innovation Centre

Bletchley Park

Milton Keynes

MK3 6EB

United Kingdom

Tel:

_{+44 (0)8456 805 135}

E-mail:

_{info@aptica.co.uk}

Web:

_{www.aptica.co.uk}