Windows Phone Thoughts: Security Roundup: Windows Mobile Flaws Exposed & MTM Specification Released

Airscanner released a whitepaper in which they expose several security flaws in the Windows Mobile operating system including "plaintext storage, broken encryption schemes, dysfunctional protection methods, and more..." Of course, it's not a total shock when a software security company says a popular platform is fraught with security holes, but the report is actually quite intriguing. In the end, they make a number of simple suggestions to get around these security holes.

In other news, the Trusted Computing Group (TCG) have released the Mobile Trusted Module (MTM) specification for a hardware-based data security solution for Smartphones and mobile PDAs (e.g. Pocket PC Phone Edition). For those of you not familiar with TCG, they are the responsible party for the well-known Trusted Platform Module (TPM) chip specification that has become a standard offering in nearly all high-end / enterprise laptops in the market today, with the most popular use being with asset recovery or data protection (making encryption solutions even more difficult to circumvent).

For anyone concerned with device security (especially in the enterprise), both sets of links provide some useful documents worth reading (aside from just specifications).