Enterprise security is arguably the biggest consideration for companies that want to enable mobile and BYOD, and this is one field where many consider iOS more secure than Android.
All due to Apple controlling app distribution and imposing limitations to the mobile operating system.
However, as this threat report (PDF) released by Marble Security shows, in an enterprise environment, neither platform is inherently more secure than the other. It centers on the BYOD (Bring Your Own Device) theme.
And explains that despite Apple’s tight app distribution control, an iOS device that is not jailbroken can still download software from enterprise app market places, via app testing programs, for example.
The report states:
“Both iOS and Android are complex operating systems, and will continue to grow in complexity over time. Major new features such as Siri for voice navigation have revealed serious security holes that may expose user contact data and phone address books. As the operating systems evolve, they will no doubt improve security, but as they add features, new security holes will emerge.”
A threat matrix in the report (shown above) reveals the weak spots of the two platforms, and the areas where they are susceptible to vulnerabilities.
These include issues like various types of phishing attacks, address book mining, SSL weaknesses, jailbreaking and rooting, unencrypted email attachments and ransomware, among others.
With Microsoft making official plans to give a big enterprise push to the Windows Phone platform, these are concerns that the company, and enterprises, will have to keep in mind going forward.