Mobile Operating Systems for CompTIA A+ 220-1102

iOS (Apple) runs on iPhone; iPadOS runs on iPad. Closed ecosystem: Apple controls both hardware and software. App distribution: App Store only (unless enrolled in Apple Developer Program or using enterprise distribution). Apple reviews all apps before publishing. No sideloading by default on standard iOS (allowed via AltStore or Sideloadly with developer credentials, or via European Union regulations). File system: sandboxed — apps cannot access other apps' files except through system extensions. iCloud: primary sync/backup service for iOS. Apple ID: required for App Store, iCloud, Find My, and most Apple services. User interface: no back button (swipe gestures or in-app back), home button (older models) or swipe-based navigation (Face ID models). Updates: centrally controlled by Apple; delivered via OTA (over-the-air) or through iTunes/Finder.

Android (Google) is open-source (AOSP) and runs on devices from many manufacturers (Samsung, Google Pixel, OnePlus, etc.). More open ecosystem: Google Play Store is primary source but sideloading is possible (APK files). Manufacturers add custom UI layers: Samsung One UI, Xiaomi MIUI, etc. Google account: required for Play Store access and Google services (Maps, Gmail, Drive). File system: more accessible than iOS — USB connection allows direct file transfer (MTP protocol). Updates: controlled by manufacturers and carriers, not just Google — causes fragmentation. Many Android devices run older OS versions. OEM unlocking and custom ROMs: possible on many Android devices (requires rooting — loses warranty and weakens security). Android versions: Android 12, 13, 14, 15 — each adds security features.

iOS: App Store (Apple review process, DRM, automatic updates). Enterprise/business apps distributed via Apple Business Manager or MDM without App Store. TestFlight for beta testing. Android: Google Play Store (primary, includes Google Play Protect malware scanning). Samsung Galaxy Store (Samsung devices). Amazon Appstore (Fire tablets and Alexa devices). APK sideloading: install apps from unknown sources (Settings → Apps → Special app access → Install unknown apps). Risk: no automated scanning for malware on sideloaded APKs. Chrome OS: Google Play Store (same as Android). Third-party app stores are not officially supported on iOS without Enterprise distribution.

Screen lock methods: PIN, pattern (Android), password, fingerprint (Touch ID on iOS, various on Android), face recognition (Face ID on iOS — 3D structured light; face unlock on many Android devices — often 2D, less secure). Encryption: iOS: full-disk encryption enabled by default when a passcode is set. Android: full-disk or file-based encryption enabled by default on modern devices (Android 6+). Remote lock and wipe: iOS — Find My (iCloud.com or Find My app). Android — Find My Device (Google account → Security → Find My Device). Both allow: lock device, display message, erase all data. Failed login lockout: iOS: 10 incorrect attempts → erase (if enabled). Android: varies by manufacturer; typically temporary lockout then Google account required. Activation Lock (iOS): prevents reactivation after wipe without Apple ID credentials — intended anti-theft; can brick devices if credentials are unknown.

MDM solutions manage fleets of mobile devices in enterprise environments. Examples: Microsoft Intune, VMware Workspace ONE, Jamf (Apple-focused), IBM MaaS360. MDM capabilities: Enforce device encryption and screen lock. Push apps without user action (silent install). Configure Wi-Fi, VPN, email profiles. Restrict features: camera, app installation, browser, screen capture. Wipe devices remotely. Enforce compliance: deny access if device is jailbroken/rooted or running outdated OS. Containerization: separates corporate data from personal data on BYOD devices. Enrollment: iOS — Apple Configurator or Apple Business Manager enrollment. Android — Android Enterprise enrollment (work profile for BYOD or fully managed for corporate devices). MDM profile/agent installs on device; device reports status to MDM server.

iOS backup options: iCloud Backup (Settings → [Name] → iCloud → iCloud Backup → Back Up Now; automatic when plugged in, connected to Wi-Fi, and locked). Backs up: app data, device settings, messages (if not using Messages in iCloud), photos (if not iCloud Photos), Health data. iTunes/Finder backup: local backup to computer. Encrypted backup: required to save passwords, Health data. Android backup options: Google One Backup (Settings → System → Backup → Google One backup). Backs up: app data, call history, contacts, device settings, SMS/MMS. Manufacturer cloud: Samsung Cloud (Galaxy), Google Photos (photos separately). Manual: USB file transfer for documents and media. Sync methods: iCloud Drive (iOS/macOS), Google Drive (Android/cross-platform), OneDrive (Microsoft — cross-platform).

Jailbreaking (iOS): removes Apple's software restrictions. Allows sideloading apps, customizing the interface beyond Apple's limits, accessing the file system. Risks: voids warranty, breaks future iOS updates, removes security protections, exposes device to malware, voids enterprise MDM compliance policies. Rooting (Android): gains root/superuser access to Android OS. Allows full file system access, system app removal, custom ROMs, advanced automation. Risks: same as jailbreaking plus: risk of bricking the device, voiding warranty, tripping Knox security (Samsung), causing bootloop. Enterprise impact: MDM systems detect jailbroken/rooted devices and can deny access to corporate resources. Google SafetyNet / Play Integrity API: detects root status and blocks certain banking/corporate apps from running on rooted devices.