Main Nav

Hello everyone,

Has anyone created  security guidelines that application developers should be following when building mobile apps for their university?

I have encountered branding guidelines for university mobile apps, but my limited research has yet to discover any guidelines for mobile app security topics such as data security, gathering/storing of personal information, app usage tracking, geo-location tracking, etc.

I know this is still unchartered waters for a lot of schools, but if anyone that has created guidelines (or even a policy) is willing to share what they have, I'd love to learn more about how other institutions are approaching these security issues with mobile apps.

Thank you in advance,


Brian Mertz
Senior Security Outreach Specialist
Office of the CIO
University of Illinois at Urbana-Champaign
********** Visit the EDUCAUSE Policy website at


Hi Brian,


We have a few application security case studies included in the Information Security Guide, although these aren’t specific to mobile security:





You might want to check out the OWASP or WASC websites for additional resources.

Thank you,



Valerie Vogel Program Manager

Uncommon Thinking for the Common Good
direct: 202.331.5374 | main: 202.872.4200 |