Symantec Says iOS More Secure Than Android

Submitted by lalit on June 30, 2011 - 2:12pm.

Symantec has published a study titled “A Window into Mobile Device Security: Examining the security approaches employed in Apple’s iOS and Google”. In which Symantec takes an in-depth look at security risks related to Apple’s iOS and Google’s Android platform deployment. The paper offers a detailed analysis of the security models employed by Apple’s iOS and Google’s Android platforms, evaluating each platform’s effectiveness against today’s major threats. This analysis has led to some important conclusions:

  • While offering improved security over traditional desktop-based operating systems, both iOS and Android are still vulnerable to many existing categories of attacks.
  • iOS’s security model offers strong protection against traditional malware, primarily due to Apple’s rigorous app certification process and their developer certification process, which vets the identity of each software author and weeds out attackers.
  • Google has opted for a less rigorous certification model, permitting any software developer to create and release apps anonymously, without inspection. This lack of certification has arguably led to today’s increasing volume of Android-specific malware.
  • Users of both Android and iOS devices regularly synchronize their devices with 3rd-party cloud services (e.g., web-based calendars) and with their home desktop computers. This can potentially expose sensitive enterprise data stored on these devices to systems outside the governance of the enterprise.
  • So-called “jailbroken” devices, or devices whose security has been disabled, offer attractive targets for attackers since these devices are every bit as vulnerable as traditional PCs.

From consumer's point of view what this study say is that Android is less secure, has more malware and jailbroken devices are not secure. Basically, meaning that Apple walled garden approach is better for consumers when it comes to mobile platform security.