The cyber security business is a big and important one but as a user it really adds no value to me. Using history as our guide I would like to pose the question;
Should the operating system (OS) also be the protector of the end point?
For years it appears this idea was noticeably absent. Microsoft provided the OS and it was up to the user to source and provide the OS protection in the form of Antivirus which over time extended to anti-phishing and more. Today, Windows 10 ships with Defender as part of the OS and by most accounts does a ‘fine’ job of protecting the endpoint. (Looking forward to the comments from those at the AV coalface regarding use of the words ‘fine’ and defender in the same sentence)
Using the above statement and transposing it to my area of expertise;
Should the mobile OS be doing the the same or do we need more?
Let’s start with Android. Google launched Google Play Protect for Android in mid 2017 and according to their annual security reports it is doing a ‘fine’ job and promotes itself as the most widely deployed mobile threat protection service in the world with over 2 Billions devices using it to scan over 50 Billion apps per day. Impressive numbers. https://www.android.com/play-protect/ .
Apple and iOS on the other hand would argue that they have built security into the OS by design and with its well architected operating system and curated app store approach. Combine this with the highest percentage users running the lasted (and most secure) version of any OS it appears Apple is also doing a ‘fine’ job of protecting the masses from nasties that may be lurking.
So just as the Mobile Threat Defence market starts to gain momentum with Gartner recognising it as a category https://www.gartner.com/reviews/market/mobile-threat-defense-solutions, several acquisitions occurring with Marble Security to Proofpoint, Lacoon to Checkpoint, SkyCure and Appthority to Symantec (let me know if I missed any) and deep integrations with mobile device management vendors such as MobileIron integrating Zimperium to the on device agent, taking shape in 2018 is the race already run or will OS provided protection be ‘fine’?