The Mobile Threat Catalogue identifies threats to mobile devices and associated mobile infrastructure to support development and implementation of mobile security capabilities, best practices, and security solutions to better protect enterprise IT. Threats are divided into broad categories, primarily focused upon mobile applications and software, the network stack and associated infrastructure, mobile device and software supply chain, and the greater mobile ecosystem. Each threat identified is catalogued alongside explanatory and vulnerability information where possible, and alongside applicable mitigation strategies.
This is living document and we continue to appreciate your feedback. Please consult NISTIR 8144: Assessing Threats to Mobile Devices & Infrastructure for context and background information.
Mobile devices offer convenience and flexibility for organizations. This video provides an overview of how the NCCoE’s efforts can help organizations improve their mobile device deployments, while taking into consideration their security and privacy needs.
A Community of Interest (COI) is a group of professionals and advisors who share business insights, technical expertise, challenges, and perspectives to guide NCCoE projects. COIs often include experts, innovators, and everyday users of cybersecurity and privacy technologies. Members typically meet monthly be teleconference. Share your expertise and consider becoming a member of this project's COI.