You may also find the following useful. This is from the SANS AppSec summit this year. The last couple of pages give a checklist for IOS application assessments. http://software-security.sans.org/downloads/appsec-2011- files/dhanjani-hacking-securing-next-gen.pdf Regards Barry K http://www.iol.ie