Question
1
Replies
243
Views
Accenture
Posted: April 23, 2017
Last activity: April 24, 2017
Pega Mobility - Security questions
- How is data stored within the Pega mobile app, is it encrypted on the device? Can you describe how the data is secured?
- REQ: Agencies should encrypt information on all mobile devices using at least an AACA
- Can the source files for Pega mobile app be supplied (.ipa (iOS) & .apk (Android)? For the intention of the client re-packaging it and supplying the mobile app through its Citrix Xenmobile MAM solution.
- Does the Pega mobile app cache ALL data (and user lists) or only the data required for the active user? For example: if the mobile device is in offline mode, can anyone log into it? (because all users and data is cached), or only users that have been online and active?
1. No data is stored on the device if it's an online only app. If it's an offline app, then yes data is stored and it is stored in SQLite, using AES 256 encryption algorithm.
2. Yes it can be supplied.
3. Only data required for active user. Multiple users can use same app, but in order to log in offline they need to log on online first to authenticate and sync their data. Then each user's data is encrypted separately based on user ID.