Lately, I have seen more and more questions regarding Pocket PC security. This article will outline different areas that network administrators and security officers should consider when deploying Pocket PCs.

Areas to secure

The following areas should be considered when designing appropriate security for the Pocket PC:

1. Power-on password--Prevent unauthorized people from seeing your data.
2. File security--RAM--Protect all files stored internally on the Pocket PC.
3. File security--Flash-- Protect all files are stored on CompactFlash or Secure Digital Cards. Note that while Secure Digital Cards support encryption, this is not implemented in the Pocket PC 2002.
4. Object store databases--Protect the internal databases for Calendar, Contacts and Tasks as well as for the Registry.
5. Installation of programs--Will users be allowed to install additional programs?
6. Changing settings--How much will users be allowed to change their configuration?
7. Backups--Do you want users to perform backups of their data?
8. Synchronization--Do you want users to synchronize at home and work? Who owns the data on the Pocket PC?