BlackBerry Cool has been asking me about what BlackBerry apps can do and recently the notion of malicious applications has come up. In this article, I address what third party apps can do, and how it relates to the safety of your personal data.
The first area to look at are you emails. Emails can contain very private personal information including username/password combinations and if the user isn’t diligent, credit card information. It is possible to listen for incoming messages and pull out their contents, so you should always be cautious of any app looking to alter email permissions. I would have to look more into whether an app can read all of your existing messages that were already on your device before the app was installed. I can’t think of a good use case for this so I obviously haven’t tried it myself.
Username and Password information are commonplace with third party apps. As for stealing 3rd party passwords, it all depends on how the 3rd party app/service is storing things on the device. For example, a developer can listen to framework calls (I won’t divulge how) and check to see what parameters are passed into those calls (for example the identifier that specifies where a password is kept in persistent storage).
This sniffing technique opens up some fairly big holes in terms of security, and definitely makes it a bit tricky to properly manage passwords. However, RIM does indeed provide some sophisticated technology to ensure your passwords are properly protected in persistent storage. For example, there is a way to ensure that ONLY your app can access particular data, which effectively blocks data mining. BUT, and this is a big but, once your app pulls that data out of persistence and back into RAM, anyone can use the sniffing technique to get at your passwords. HOWEVER, now it’s much harder to do. With RIM’s protection methods, an attacker now has to have physical access to your device to sniff for data, so it would be impossible to write an app that automatically pulls out your data.
A 3rd party app can, without having to ask for permissions (in most cases, depending on the device security settings):
- Read your entire contact list.
- Read your calendar.
- Read your memos.
- Pull out unprotected information from the persistent store.
- Listen for incoming phone calls and collect data on those calls.
That’s as much as I can think of off the top of my head. Ultimately it’s buyer beware. Companies like Multiplied Media (I’m the lead developer for Poynt), who strive to uphold the highest levels of trust and integrity between ourselves and ours users have built up that level of trust over time. There’s always the potential risk, just like with anything else, that an app might be doing things that you aren’t aware of or don’t want it to do. The good thing is there are many so called white-hat developers out there that are watching for these apps and will alert the community when a bad apple shows up.
Although RIM does have a fairly rigorous approval process, they have opted to treat App World more like an open market than Apple’s App Store. This gives BlackBerry users a leg up, because they can evaluate for themselves about what is good or bad (the true invisible hand market paradigm). But like in any free market, there can be products that don’t do what they say they do, or do more than they say they do. Ultimately what it comes down to is being informed as a consumer. Luckily there are great blogs like BlackBerry Cool to facilitate the information sharing process among consumers
I would invite as many developers as possible to join in that effort to ensure a fair and clean BlackBerry application community.
NOTE FROM EDITOR (KYLE): I have spoken with Mobihand recently about their vetting process for applications and they have assured me they take their commitment to customers seriously. When issues arise, as they did with NetworkAcc, they look into them. In this case, what Mobihand learned was inconclusive, so they decided to leave it in the catalog and let users decide for themselves. But they have an adaptable system, and are willing to work with bloggers to customize the store front. In this case, I have asked them to exclude NetworkAcc from our store, and I will ask them to do so with any other products that are questionable in what they offer.
