This paper investigates the main challenges companies face when implementing information-security practices during the development of mobile applications in corporate environments. The methodology combines a literature review with a case study conducted at a Brazilian software-development firm. We analyzed common vulnerabilities, security best practices, and compliance with the Brazilian General Data Protection Law (LGPD). The study identified well-known challenges such as authentication and cryptography, as well as issues specific to enterprise contexts, including controlling authorized devices and periodically renewing biometric authentication. The adopted solutions highlight the importance of aligning technical measures with organizational realities, underscoring the need for an integrated approach to ensure security throughout the mobile-development life cycle.

错误:搜索内容不能为空,请输入英文关键词
错误:关键词超出字数限制,请精简
高级检索

Challenges in Implementing Security Practices in Mobile Development Within a Corporate Environment: A Case Study

  • Gleidson Sobreira Leite,
  • Pedro Bandeira Milfont,
  • Francisco Edvan Chaves,
  • Joel Moreira Meira

摘要

This paper investigates the main challenges companies face when implementing information-security practices during the development of mobile applications in corporate environments. The methodology combines a literature review with a case study conducted at a Brazilian software-development firm. We analyzed common vulnerabilities, security best practices, and compliance with the Brazilian General Data Protection Law (LGPD). The study identified well-known challenges such as authentication and cryptography, as well as issues specific to enterprise contexts, including controlling authorized devices and periodically renewing biometric authentication. The adopted solutions highlight the importance of aligning technical measures with organizational realities, underscoring the need for an integrated approach to ensure security throughout the mobile-development life cycle.