I'm considering purchasing an IPP (which would be my first real tablet) for multiple uses. Among those would be banking, reviewing stocks, medical records and other sensitive information. Is IPP/iOS an appropriate device to be using and exactly how does one go about securing this information ?
Got a tip for us?
Let us know
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.
All iPads Security Questions
- Thread starter ProgRocker
- Start date
- Sort by reaction score
What’s your comparison here? If android, then iOS is obviously way more secure than Android
That's a pretty broad question. It depends on where the sensitive data resides. Best if such data resides on a secure physical or cloud server, and viewed via encrypted communication. Downloading such data to the iPad introduces additional risks (stolen device, compromised, hacked, etc.). But IOS security is still robust if properly implemented (encryption, password access, Touch ID, etc.). Advise reviewing Apple Platform Security at their website for more details.
True but I reckon most iPads are more secure than your average Windows setup. I expect a greater percentage of iOS devices have encrypted storage compared to Windows desktops and laptops.
Good point. As far as I know mobile devices (whether it is Android or iOS) get encrypted the moment you set up some sort of security (fingerprint sensor, Face ID, screen pattern). So just by adding one such security level you already have by default your data being secured.
I do not think that Windows works this way. You can of course setup password for access but I do not think that this automatically encrypts your data. You will have to setup something like Bitlocker to ensure data encryption. That being said you still can secure files in Windows by adding passwords for them so there is that option too.
Anyway back to the point of securing the data on iOS:
- Setup Touch ID or Face ID and passcode (this ensures data encryption)
- Use password manager like 1Password or something else
- If you have to store something locally then you can use Notes and lock the Note (it would require passcode or TouchID/FaceID to open the note)
- My company phone is setup in a way where I have to change my passcode every 3 months. Not that there is no Touch ID setup but still it is a bit of an additional layer
- Disable Siri activation from lock screen - it is a bit of security vulnerability to leave this enabled as this way also someone else might trigger your device
- Disable showing notifications details and widget details from lock screen (basically you will see that have some notifications but you need to unlock your device to see the details)
The encryption level is the same. It’s the desktop vs mobile paradigm that makes the difference. On iOS encryption is turned on the minute a passcode is set up & you can’t turn it off. On desktop paradigm you can enable/ disable encryption irrespective of having a password to login or not.
No comparison just new to tablets and wanted to be certain of what I was doing before jumping in.
That's a good question. if I were to check my bank account, make a digital deposit, converse with a doctor via Patient Portal, order something on Amazon would there axtually be data residing anywhere ?
Thank you, that's good to know.
Also, where does a VPN fit in, if at all as far as security ? Are these set up like a desktop. anti-virus, firewall, VPN, ect ?
.
Those all sound like data that will be stored on your bank, hospital or Amazon's servers and communication should already be encrypted. VPN just hides/anonymizes your traffic (and encrypts non-encrypted traffic).
Yep and to add on that. You can use VPN if you are outside and use public WIFI to further secure the connection. Not sure if it makes sense to use it at home though.
Absolutely makes sense if you want to watch Netflix from another country.
Good point
. I was thinking about the security aspect only.
Great, I was concerned that there might be files stored on the ipad similar to the temp folder on my PC. And even if so it will be encrypted which I believe the pc does not do.
That's exactly what I was wondering. Do you need a VPN for security reasons at home.
Interesting, it seems the ipad is actually more secure than my pc. If that's the case, when I pick up an IPP I'll switch over to using it instead of my pc for such occasions.
The backend platform is as secure as you can on a readily available consumer device.
The major issue is apps, for example to me having a financial app with proper authentication and timeout is critical.
For example, there are some iPad apps that do not time out or ask for a password after a certain time, this is an issue for me as my iPad gets passed around in the family all day long, and i cant have my kids accidentally getting into one of those apps.
For that reason i still rely on using this in the secure environment of my laptop, where my kids are not allowed.
Personally as much of anti android as i am, i absolutely love the multiple profile mode of some android phones. Samsung’s implementation of the Knox secure environment is also awesome, iPadOS simply doesn’t have this.
With all that said, as i am positive this is the future of apple, i image in the next few iterations, the multiple profiles and kids modes will be ramped up by Apple.
Locking things down with screen time is a poor implementation
The major issue is apps, for example to me having a financial app with proper authentication and timeout is critical.
For example, there are some iPad apps that do not time out or ask for a password after a certain time, this is an issue for me as my iPad gets passed around in the family all day long, and i cant have my kids accidentally getting into one of those apps.
For that reason i still rely on using this in the secure environment of my laptop, where my kids are not allowed.
Personally as much of anti android as i am, i absolutely love the multiple profile mode of some android phones. Samsung’s implementation of the Knox secure environment is also awesome, iPadOS simply doesn’t have this.
With all that said, as i am positive this is the future of apple, i image in the next few iterations, the multiple profiles and kids modes will be ramped up by Apple.
Locking things down with screen time is a poor implementation
iOS has a lot of ways to encrypt and protect your device. However one of the things that no one really thinks about is the back ups. A lot of the stuff is secured or stored on the cloud, you need to set up encryption on your back ups if you really want to be sure that you’re safe.
https://support.apple.com/en-us/HT205220
(another sidenote is that when you have a encrypted backup and you do a restore or buy a new device it does retain a lot of your information, so that way you don’t have to log back into everything always. )
for on device security this is a good and to the point rundown. https://www.macworld.com/article/1160313/iPad_security.html
[automerge]1588713783[/automerge]
Oh, and the side no myth about android being my secure than iOS, out of the box this is absolutely true.
However with being able to root your android you can lock that up tighter than any iOS device. It just requires more know how.
Codicils to any device security is opening bad emails and access to about apps on the store.
Last edited:
Interesting, thanks Mike. Having read through this thread a few times I see I'll have to do some research before I actually start using the IPP. Or at least before I start using any apps that use personal data.