<div dir="ltr">Hi, greyhats and greybeards. I need help.<div><br></div><div>C8 is asking about protocols for the mobile devices with the app to <b>send this information as securely as possible</b>. </div><div><br></div><div>I'm no mobile phone technology whizkid, so I hope someone can clarify things for me.</div><div><br></div><div>The case study makes no reference to <b>how</b> the phones send data from the app to the SBH system.</div><div><br></div><div>The phone would be using 3G or 4G technology - does the app designer have any control over 3G/4G communication security?</div><div><br></div><div>Is C8 assuming the app's data will go over 3G/4G using HTTP with SSL or TLS encryption? (This is what I assume the Q is fishing for.)</div><div><br></div><div>Or could the data go from the phone over 3G/4G using a different protocol entirely, such as text messaging (does <b>that</b> use HTTP?) or something I've never even heard of (which is very, very likely).</div><div><br></div><div>What security protocols do phone companies use to get data from mobile towers to their destinations?</div><div><br></div><div>Surely not <b>all</b> data sent by <b>all apps </b>over mobile phone connections uses HTTP/HTTPs. Or is it?</div><div><br></div><div>When you get an Angry Birds high score on your phone, is that data sent to Rovio over HTTP? Is it sent to your phone company using <b>one</b> protocol, then to Rovio with a <b>different</b> protocol? </div><div><br></div><div>Apart from SSL/TLS (or pre-encryption of entire data files using an RSA variant), what protocol can a phone app use to send information as securely as possible?</div><div><br></div><div>I have no idea.</div><div><br></div><div>Thanks in advance if you have a clue. I'd be keen to learn about this newfangled technobother.</div><div><br></div><div>I just hope the kids in the exam were not expected to be mobile telecommunications engineering experts.</div><div><br></div><div>I shall do research in the interim. My ignorance of this field is becoming increasing obvious to us all.</div><div><br></div><div>Mark<br clear="all"><div><br></div>-- <br><div class="gmail_signature" data-smartmail="gmail_signature"><div dir="ltr"><div><div dir="ltr"><div dir="ltr"><div dir="ltr"><div dir="ltr"><div dir="ltr"><div dir="ltr"><div dir="ltr"><div dir="ltr"><div dir="ltr"><div dir="ltr"><div dir="ltr"><div dir="ltr"><div dir="ltr"><div dir="ltr"><div dir="ltr"><div dir="ltr"><div dir="ltr"><div dir="ltr"><div dir="ltr"><div dir="ltr"><div dir="ltr"><div dir="ltr"><div dir="ltr"><div><i><br></i></div><div><span style="font-size:12.8px">Mark Kelly</span><br></div><div><br></div><div><a href="mailto:mark@vceit.com" style="font-size:12.8px" target="_blank">mark@vceit.com</a><br></div><div><a href="http://vceit.com" target="_blank">http://vceit.com</a></div></div></div></div></div></div></div></div></div></div></div></div></div></div></div></div></div></div></div></div></div></div></div></div></div></div></div>
</div></div>