Shutting Front and Back Door Access to Your Mobile Devices

Tuesday, March 27, 2012

Kevin Doel


Article by David Pfeiffer

Shutting Front and Back Door Access to Your Passwords on Mobile Devices

Mobile devices free us from being tied to an office computer when accessing personal info: web logins, passwords, PINs, account numbers, etc.

Imagine your mobile device falling into the wrong hands - draining your bank accounts, ruined your reputation and having your identity stolen.

A lost or stolen phone constitutes a serious security threat to the information on the device because the attacker has unlimited time to gain access to the secrets that are stored therein. As most people do not password protect their phones and most phone models have been cracked, important personal information should not be stored in any unsecured note app.

Important personal info should be stored in a digital wallet or password manager protected with 256 bit Blowfish encryption to keep the data safe, secure and accessible.

Front door attacks are where a hacker continually attempts to guess your password. A good password manager closes this front door with a self-destruct feature that can wipe your data after a number of password entry attempts. An auto-lock feature will also dump any un-encrypted data when the app or phone is not in use.

Back door attacks are where the hacker has cracked the device (access to all data on the phone’s file system) and can access the password manager’s database. A good password manager will encrypt your personal data using 256-bit encryption with a hash of the master password so a brute-force attack on the data will take years with an array of computers.

Transmission attacks take place when data is captured during transmission like a data sync activity. A good password manager will have a sync architecture that encrypts the data with a separate strong password before it is transmitted or stored on a cloud server.

A password manager should serve as an impenetrable lock to block front or back door access to your most sensitive data.

David Pfeiffer is Marketing Director of mSeven Software, developer of productivity software solutions for Windows and Mac computers and iPhone, iPad and Android devices. The company's flagship app is the mSecure password manager. For more information, visit

Possibly Related Articles:
PDAs/Smart Phones
Information Security
Encryption Access Control Data Loss Prevention Mobile Devices Smart Phone Password Management Data Protection Frontdoor Attack Transmission Attack
Post Rating I Like this!
The views expressed in this post are the opinions of the Infosec Island member that posted this content. Infosec Island is not responsible for the content or messaging of this post.

Unauthorized reproduction of this article (in part or in whole) is prohibited without the express written permission of Infosec Island and the Infosec Island member that posted this content--this includes using our RSS feed for any purpose other than personal use.