IBM MobileFirst Helps Organizations Strengthen App Security

         IBM MobileFirst Helps Organizations Strengthen App Security

Made in IBM Labs: Security Software Shows Where Vulnerabilities Appear in iOS

PR Newswire

ARMONK, N.Y., Feb. 21, 2013

ARMONK, N.Y., Feb. 21,2013 /PRNewswire/ --IBM (NYSE: IBM) today announced
security software that helps organizations proactively reduce the security
risk to iOS enterprise apps. Clients will be able to build security testing
into the initial design of mobile apps so that vulnerabilities can be detected
early in the development process, before being deployed to customers or
employees. Today's announcement further expands the IBM MobileFirst portfolio,
which marries deep expertise with a comprehensive set of mobile software and
cloud-based services. 


According to Gartner, more than 45.6 billion mobile apps were downloaded in
2012. As the rate of app use on mobile devices increases, securing smartphones
and other endpoint devices is a top priority for organizations and Chief
Information Security Officers. With the proliferation of consumer and
enterprise mobile apps, organizations cannot always control or restrict the
apps installed on user devices, so they must test how apps send and save data.
IBM's new security software can automatically identify where data enters and
leaves a mobile app, helping to prevent mobile data leakage.

Improving Security and Reducing Costs of iOS Mobile Apps
The pace of mobile application releases and updates can be overwhelming for
organizations trying to maintain strict security guidelines and policies. IBM
AppScan Source 8.7 for iOS provides the ability to improve security quality
without sacrificing time-to-market of mobile app projects. This allows
organizations to better protect each mobile app release in the face of
constant updates. IBM previously announced IBM AppScan for apps running on the
Android platform.

KiwiTech is a leading mobile technology firm headquartered in Washington DC,
and offices in New York and New Delhi. The company has developed more than 750
apps which have generated over three million downloads on iOS and Android
platforms. With more than 200 mobile development and related professionals
focused on app development, including security is a top priority for the

"Over the last four years, KiwiTech has developed hundreds of iOS and Android
mobile apps for organizations around the world. As the risk from mobile
malware and data leakage grows, our customers are looking for ways to secure
their iOS and Android apps and protect corporate data," said Rakesh Gupta,
Chief Executive Officer, KiwiTech. "The new IBM AppScan product will allow us
to proactively secure mobile apps and automate security testing to ensure our
customers can keep pace with constant updates."

In addition, IBM AppScan Source 8.7 for iOS can help reduce the cost of
developing secure apps by building security analysis early into the
development cycle. It provides developers with an unmatched view into where
vulnerabilities appear in their mobile apps, which improves security quality
without sacrificing time to market of mobile app projects.

"This new capability showcases IBM's execution in our strategy to help clients
incorporate security into their infrastructure and solutions from the design,
development and testing phases rather than leaving security to become an
afterthought," said Caleb Barlow, Director of Application, Data and Mobile
Security, IBM. "It also aligns with the IBM MobileFirst strategy by empowering
organizations with confidence to aggressively evolve and seize the business
potential that mobility promises."

New capabilities to IBM AppScan Source 8.7 for iOS include:

  oComplete Language Support for Objective-C, JavaScript and Java: Includes
    the ability to do call and data flow analysis that will generate trace
    information. This new capability enables organizations to build secure
    enterprise mobile apps, regardless of technology choice, for employees and
  oSupport for US Federal Government Requirements: Internet Protocol version
    6 (IPv6) and use of a FIPS 140-2 validated cryptographic module.
  o40,000 Mobile Security APIs Supported: IBM Security Research conducted a
    comprehensive analysis on the iOS Software Development Kit (SDK) to
    include coverage of APIs that might introduce security risks. The API
    profiles have been added to the IBM AppScan Source Security Knowledgebase
    and tied to the analysis engine. Combined with the research conducted on
    the Android SDK, IBM AppScan Source has researched and characterized the
    security risk of approximately 40,000 mobile APIs.

IBM AppScan Source 8.7 for iOS is planned for release on March 25th.

About IBM Security
AppScan is part of IBM's portfolio that provides the security intelligence to
help organizations holistically protect their people, data, applications and
infrastructure. IBM offers solutions for identity and access management,
security information and event management, database security, application
development, risk management, endpoint management, next-generation intrusion
protection and more. IBM operates one of the world's broadest security
research and development, and delivery organizations. This comprises 10
security operations centers, nine IBM Research centers, 11 software security
development labs and an Institute for Advanced Security with chapters in the
United States, Europe and Asia Pacific. IBM monitors 15 billion security
events per day in more than 130 countries and holds more than 3,000 security

For more information on IBM security, please visit:

About IBM MobileFirst
As the first new technology platform for business to emerge since the World
Wide Web, mobile computing represents one of the greatest opportunities for
organizations to expand their business. Based on nearly 1,000 customer
engagements, 10 mobile-related acquisitions in the last four years, a team of
thousands of mobile experts and 270 patents in wireless innovations, IBM
MobileFirst offers an array of solutions that helps businesses connect,
secure, manage and develop mobile networks, infrastructures and applications.

To learn more, visit the IBM MobileFirst press kit or Follow @ibmmobile, #ibmmobile on Twitter, and
see IBM MobileFirst on YouTube, Tumblr and Instagram.

Contact(s) information

John Connolly
IBM Media Relations
(781) 636-8512

Tod Freeman
IBM Media Relations
(415) 320-5893


Press spacebar to pause and continue. Press esc to stop.