Firefox’s new web-centric OS will allow user to run applications from the web, raising concerns on how to stop malicious software.
Mozilla new Firefox OS for smartphone which aimed at Eastern European and South America markets will likely face challenges from protecting users from the malicious mobile application that are growing and creating problem around the world.
These malicious applications have creep into both Apples and Google's application store despite the security screening by the websites.
In the case of Mozilla Firefox, the issue is that the application will not only makes some applications available through its application store (Traditional) which is called Firefox Marketplace. The company will as
well encourage developers to make applications that are downloaded from the web or run from a website instead. Though the OS application is based on computer language (HTML5) which is essentially make web application work as well as desktop software. This allows visitors on mobile devices to act like that such application have been downloaded despite the fact that researcher have been so much concern about the security issue.
The problem is that it's not yet clear how Mozilla Firefox will be able to screen those applications to eliminate those that could pose threats or privacy problem says a mobile security researcher from Winlab at Rutgers University (Janne Lindqvist ). He proceeds by saying how do you control the user privacy and security at the same time if you make it so flexible that with little keywords search you have multiple application available at the same time?
Mozilla Firefox spokesman says user can expect all the security, privacy, customization and user control Firefox has always delivered.
In one step aimed at securing downloaded applications, the company is encouraging application developers to package their downloadable application in a zip file that has been cryptographically signed by the store from which it’s originated showing assurance that it has been reviewed and free from malicious. The Mozilla Firefox spokesperson also say that application coming back from search will only be given limited access to device programing interface and applications, unless their user grants permission for further access so as to protect such application from malicious attack.
How Firefox OS decides which of these web applications to show will be so much important. A standard attack method with Android is to take new application from traditional marketplace and insert some malicious software and replace it. In some cases, malicious application can propagate phishing attack, distributing web address to fraud sites because sometimes applications do leak personal data.
Web base application could be subject to the same types of attack. But security researcher says it is too early to say whether the new approach will be worse for all users. It’s challenging to assess all the control that Mozilla has put in place (Tim Wyatt).
What do you see to the malicious attack on Mozilla Firefox for mobile?
Labels: PHONE TIPS, TECHNOLOGY TIPS