<div class='os_post_top_link'><a href='http://www.airscanner.com/blog/blog.php?blogid=0608141507' target='_blank'>http://www.airscanner.com/blog/blog...ogid=0608141507</a><br /><br /></div>Airscanner released a <a href="http://www.airscanner.com/pubs/Airscanner_Security_Tests.pdf">whitepaper</a> in which they expose several security flaws in the Windows Mobile operating system including <i>"plaintext storage, broken encryption schemes, dysfunctional protection methods, and more..."</i> Of course, it's not a total shock when a software security company says a popular platform is fraught with security holes, but the report is actually quite intriguing. In the end, they make a number of simple suggestions to get around these security holes.<br /><br />In other news, the Trusted Computing Group (TCG) have released the <a href="https://www.trustedcomputinggroup.org/groups/mobile">Mobile Trusted Module (MTM) specification</a> for a hardware-based data security solution for Smartphones and mobile PDAs (e.g. Pocket PC Phone Edition). For those of you not familiar with TCG, they are the responsible party for the well-known Trusted Platform Module (TPM) chip specification that has become a standard offering in nearly all high-end / enterprise laptops in the market today, with the most popular use being with asset recovery or data protection (making encryption solutions even more difficult to circumvent).<br /><br />For anyone concerned with device security (especially in the enterprise), both sets of links provide some useful documents worth reading (aside from just specifications).