Main Nav

Posted by mertz on October 19, 2012
Hello everyone,

Has anyone created  security guidelines that application developers should be following when building mobile apps for their university?

I have encountered branding guidelines for university mobile apps, but my limited research has yet to discover any guidelines for mobile app security topics such as data security, gathering/storing of personal information, app usage tracking, geo-location tracking, etc.

I know this is still unchartered waters for a lot of schools, but if anyone that has created guidelines (or even a policy) is willing to share what they have, I'd love to learn more about how other institutions are approaching these security issues with mobile apps.

Thank you in advance,

Brian

-- 
Brian Mertz
Senior Security Outreach Specialist
Office of the CIO
University of Illinois at Urbana-Champaign
bmertz@illinois.edu
twitter.com/citessecurity
********** Visit the EDUCAUSE Policy website at http://www.educause.edu/policy.

Comments

Hi Brian,

 

We have a few application security case studies included in the Information Security Guide, although these aren’t specific to mobile security:

·        https://wiki.internet2.edu:443/confluence/x/OQCj

·        https://wiki.internet2.edu:443/confluence/x/MwCj

·        https://wiki.internet2.edu:443/confluence/x/UYKb

 

You might want to check out the OWASP or WASC websites for additional resources.

https://www.owasp.org/index.php/Main_Page

http://www.webappsec.org/


Thank you,

Valerie

 

Valerie Vogel Program Manager

EDUCAUSE
Uncommon Thinking for the Common Good
direct: 202.331.5374 | main: 202.872.4200 | educause.edu

 

Posted by: vvogel on October 23, 2012
Post a Comment

Research and Publications

Conferences and Events

Career Development

Focus Areas and Initiatives

Connect and Contribute

About EDUCAUSE

Close


Current Issue
May/June 2013
EDUCAUSE Review

Publications

Research

Close


Annual Conference
October 15–18, 2013
Register now!

Events for all Levels and Interests

Whether you're looking for a conference to attend face-to-face to connect with peers, or for an online event for team professional development, see what's upcoming.

See All Events

Close

EDUCAUSE Institute
Leadership/Management Programs
Explore More

Career Center

Find or Post a Job

Leadership and Management Programs

EDUCAUSE Institute
Advanced Programs
Project Management

 

Fellowships and Awards

Fellowships
Awards Programs

Getting Involved

Mentoring
Volunteer
Speak at an Event

 

 

Jump Start Your Career Growth

Explore EDUCAUSE professional development opportunities that match your career aspirations and desired level of time investment through our interactive online guide.

Advance Your Career

 

Close

Latest Topics

EDUCAUSE organizes its efforts around three IT Focus Areas

 

Enterprise and Infrastructure

Enterprise and
Infrastructure

Policy and Security

Policy and
Security

Teaching and Learning

Teaching and
Learning

 

Join These Programs If Your Focus Is

Close

From the Blogs
The Role of Campus Leadership in Ensuring IT Accessibility
by
Diana Oblinger

Find Others

Share Ideas

Get on the Higher Ed IT Map

Employees of EDUCAUSE member institutions and organizations are invited to create individual profiles.
 

Create Your Profile

 

Close

2013 Strategic Priorities

  • Connected Learning
  • Enterprise IT
  • Foundations


Learn More >

Uncommon Thinking for the Common Good™

EDUCAUSE is the foremost community of higher education IT leaders and professionals.
 

Discover Membership