How do security considerations differ when securing a mobile application versus a traditional web application?