From 21f8c6138ccd858ca6d516844a8b18d3c563aae0 Mon Sep 17 00:00:00 2001 From: Daniel Molkentin Date: Wed, 4 Dec 2019 16:35:19 +0100 Subject: [PATCH] Add dg105 --- content/datengarten/105.md | 18 ++++++++++++++++++ 1 file changed, 18 insertions(+) create mode 100644 content/datengarten/105.md diff --git a/content/datengarten/105.md b/content/datengarten/105.md new file mode 100644 index 0000000..f124456 --- /dev/null +++ b/content/datengarten/105.md @@ -0,0 +1,18 @@ +--- +categories: ["Datengarten"] +tags: ["card10", "badge", "camp2019"] +series: "Datengarten" +title: "Datengarten 104" +no: 104 +subtitle: "IT-Security Weaknesses of Emergency Alert Apps" +speaker: "Malte Schoenefeld, Marc Schoenefeld" +date: 2019-12-04T16:23:00+02:00 +event: + start: 2019-12-10T20:00:00+02:00 + end: 2019-12-10T21:00:00+02:00 +location: CCCB +language: en +streaming: false +#recording: https://streaming.media.ccc.de/datengarten +--- +Emergency Apps (like NINA/DE, FEMA/US and others) are a novel approach to enhance conventioal emergency alert channels with mobile devices, which nowadays are owned by the majority of the population to connect them to omnipresent data sources of the Internet. Due to typical characteristics implied by the design of mobile operating systems and applications, emergency apps on the hand have short version life cycles, on the other hand should be resilient to human and technical failure. Therefore we present the features of mobile apps, describe typical requirements towards these. To provide a practical result we scanned several apps for typical vulnerability patterns (and placed these in the CVE/CWE categories). In the end we summarize our research results towards a wish list to promote standard infrastructure and quality criteria for the development and deployment of such apps.