Please note that as of October 24, 2014, the Nokia Developer Wiki will no longer be accepting user contributions, including new entries, edits and comments, as we begin transitioning to our new home, in the Windows Phone Development Wiki. We plan to move over the majority of the existing entries. Thanks for all your past and future contributions.

Revision as of 15:06, 30 September 2009 by Larry101 (Talk | contribs)

User-data security design guidelines

From Wiki
Jump to: navigation, search

Applications should give high priority to user data and should not modify, delete or broadcast it. OEMs should also release the device with preloaded antivirus software.

A checklist for user data security

  • Users data like images, videos, messages, contacts should not be altered without their permission.
  • Access point information should not be modified without informing user.
  • For using GPRS, user confirmation should be taken.
  • Sending background SMS should be discouraged.
  • Secure information like Password should be encrypted.
  • Users should be given permission to delete their private data.
  • Users should be encouraged to take backup of their private data.
  • Application's sensitive data should be created in the private folder of the application, so that it is not accessible to other applications.
  • While sending data to the web, it would be pertinent to notify the user of the vulnerability of the data in case there exists one.
  • While deleting any data through the UI always display a confirmation dialog to the user to avoid inadvertant delete of data.
  • Allow some kind of backup/restore mechanism for application which contains lot of sensitive user data.
63 page views in the last 30 days.