Question

1
Replies
255
Views
 Shankhabrata Chowdhury (Shankhabrata)
Accenture
Technology Architect
Accenture
IN
Shankhabrata Member since 2013 20 posts
Accenture
Posted: April 23, 2017
Last activity: April 24, 2017
Posted: 23 Apr 2017 11:47 EDT
Last activity: 24 Apr 2017 14:17 EDT
Closed

Pega Mobility - Security questions

  1. How is data stored within the Pega mobile app, is it encrypted on the device? Can you describe how the data is secured?
    1. REQ: Agencies should encrypt information on all mobile devices using at least an AACA
  2. Can the source files for Pega mobile app be supplied (.ipa (iOS) & .apk (Android)? For the intention of the client re-packaging it and supplying the mobile app through its Citrix Xenmobile MAM solution.
  3. Does the Pega mobile app cache ALL data (and user lists) or only the data required for the active user? For example: if the mobile device is in offline mode, can anyone log into it? (because all users and data is cached), or only users that have been online and active?
Mobile Security
Moderation Team has archived post, This thread is closed to future replies. Content and links will no longer be updated. If you have the same/similar Question, please write a new Question.
Posted: 4 years ago
Posted: 24 Apr 2017 14:17 EDT
Stephanie Louis (StephanieLouis)
PEGA
Sr. Director, Community and Developer Programs
Pegasystems Inc.
US

1.  No data is stored on the device if it's an online only app.  If it's an offline app, then yes data is stored and it is stored in SQLite, using AES 256 encryption algorithm.


2.  Yes it can be supplied.


3.  Only data required for active user.  Multiple users can use same app, but in order to log in offline they need to log on online first to authenticate and sync their data.  Then each user's data is encrypted separately based on user ID.