Gartner estimates that the number of attacks against mobile devices is going to double in the near future, and yet for the most part these devices remain a blackbox in many ways. Lack of proper tools to evaluate the privacy posture of the installed apps, no rootkit and baseband attacks detection software and hardly any control over the underlying internals are all important missing aspects of these devices both for consumers and enterprises. Furthermore Android got the lion share of the market and its security model is closer to the PC-world compared to the one used by iOS.
The goal of the roundtable is to discuss and address these issues, is the Android approach to security better than iOS in the long run? How can we deal with attacks below the application level (baseband, kernel, etc etc)? What are the implications of more and more apps for finance and IoT monitoring on the threat models for mobile? Can we realistically build a trustworthy mobile platform?