Skip to main content

Splunk Lantern turned 5 on May 28th. Thank you for being one of our 750,000 annual users!
Click here to join our Slack channel to tell us what you love about the site or what content you'd like to see more of.
Lantern Home

 

Splunk Lantern

Mobile device data

  1. Last updated
  2. Save as PDF

 

Mobile device data refers to the information generated, captured, or processed by mobile devices (such as smartphones, tablets, and wearable devices) and their associated software applications. This data may include hardware-specific details, user interactions, application usage, network activities, sensor inputs, and system performance metrics. Security teams can expand the threat landscape by monitoring mobile device data for abnormal activity in regards to authentication, location and
application usage.

Since mobile apps invariably connect to one or more backend services, data from the client’s point of view can provide insight into the app’s condition and state when investigating issues such as crashes, performance degradation or security leaks. Mobile data shows the sequence of events and the application conditions leading up to and during a problem. If the source of the problem is the mobile application itself, getting insight on mobile application data can help developers deliver a better performing mobile app. It is often managed by mobile operating systems, apps, or backend servers.

Examples of mobile device data include the following:

  • Device information: Data about the hardware and software characteristics of the mobile device
  • Location data: Geographic data collected using GPS, Wi-Fi, or cellular signals
  • Application usage data: Information about how users interact with mobile applications
  • Sensor data: Inputs collected from device sensors
  • Network and connectivity data: Information about the device's connectivity status and network usage
  • Push notification data: Data related to notifications sent to or received by the device
  • Call and messaging data: Details of calls, SMS, or messaging app interactions (if permissions are granted)
  • Biometric data: Data collected from biometric sensors for authentication or health purposes
  • Error and crash logs: Logs capturing system or application failures
  • Payment and transaction data: Data related to payments or transactions performed using the device
  • User preferences and settings: Data about user-configured settings and preferences on the device or app

Mobile device data often includes sensitive personal or behavioral information. It should be handled in compliance with data protection regulations like GDPR, CCPA, or HIPAA. This data is stored in formats like JSON, XML, or proprietary structures, either locally on the device or in cloud storage. Access to mobile device data is typically gated by user permissions (for exmaple, for location, camera, or microphone access) to ensure user consent and control.

Before looking at documentation for specific data sources, review the Splunk Docs information on general data ingestion: 

Add-ons and apps

Use cases for the Splunk platform