Mobile Device Hardening: Android || iOS

Ensure the safety and security of your mobile devices with these critical guidelines and recommendations tailored for Android and iOS systems. Additional resources are available at the DFP Checklists.

There is a larger DFP Section that is broader than just mobile devices

And some direct links to mobile hardening guides and resources:

• Inteltechniques Mobile Hardening Guide
• PrivacyGuides: Mobile Phones

NSA Mobile Device Best Practices

Download the NSA Mobile Device Best Practices PDF for a comprehensive guide. Below are some essential highlights:

• Keep Applications Updated: Ensure apps are always up-to-date to mitigate vulnerabilities and benefit from the latest security patches.
• Disable AdTech: Remove your Advertising ID and disable personalized ads to reduce tracking.
• Use Screen Lock Protection: Secure your device with passcodes, fingerprint, or facial recognition.
• Lock Individual Apps: Set additional locks for sensitive apps such as those handling communication and finance.
• Power Cycle Your Device: Regularly restart your phone to clear out potential vulnerabilities.

Comprehensive Mobile Security Checklist

This checklist is designed to help you harden your mobile device security:

Digital Security:

• ☑ Disable unused wireless radios.
• ☑ Use airplane mode when not needed.
• ☑ Avoid apps and settings that rely heavily on ad tracking.

Passwords & Authentication:

• ☑ Use strong passwords or pins for screen locks.
• ☑ Lock your SIM card and obtain the PUK from your carrier.
• ☑ Enable device encryption.
• ☑ Use biometrics wisely (prefer non-index fingers).
• ☑ Use a trusted password manager.

Activity & Maintenance:

• ☑ Turn off always-on virtual assistants.
• ☑ Regularly update the OS and apps.
• ☑ Avoid public USB chargers; use data blockers.
• ☑ Download apps only from trusted sources.
• ☑ Use a VPN and enable password protection for vital apps.
• ☑ Maximize privacy settings in all apps.

Mobile Applications for Enhancing Security and Privacy

Here are some recommended applications to strengthen your mobile device's security and privacy:

Side-Loading Apps: Risks and Benefits (Android)

Understand the pros and cons of side-loading apps (installing from non-official sources):

Benefits

• Access a broader range of apps.
• Use open-source apps for better privacy.

Risks

• Potential exposure to malware.
• May void your device's warranty.

F-Droid: A Secure Alternative

F-Droid is an open-source platform for Android apps that focuses on privacy and security.

Pros

• Non-tracking, privacy-first app store.
• Access to open-source apps.

Cons

• Limited selection compared to Google Play.
• Possible compatibility issues on some devices.

How to Install F-Droid

1. Visit the official F-Droid website.
2. Download the F-Droid APK file.
3. Enable installation from unknown sources on your Android device.
4. Open the APK file to install F-Droid.
5. Browse and install secure, open-source apps.

For those looking for a Google Play alternative, try the Aurora Store, an open-source frontend to Google Play with privacy in mind.

Recommended Mobile Apps for Security and Privacy (Android and iOS)

Password Management

• Bitwarden: Available on Android and iOS.
• KeePass: Available on Android, iOS, and F-Droid.

Two-Factor Authentication

• Aegis: Available on Android and F-Droid.
• 2FAS: More details available on the official MFA guide.

Malware Protection

• Malwarebytes: Available on Android and iOS.

Encryption and Data Protection

• OpenKeychain: Manage PGP keys on Android.
• Cryptomator: Encrypt files before cloud upload on Android, iOS, and F-Droid.

Secure Communication

• Element Messenger: Available on Android and iOS, also on F-Droid.
• ProtonMail: Encrypted email service from Switzerland, available on Android and iOS.

Specialized Tools for Security

• TrackerControl (F-Droid): Monitor and control app data collection.
• Insular: Isolate apps or run multiple accounts on F-Droid.