Presentation: Tweet"Security threats and mitigations for iOS developers"
From an architecture perspective iOS is one of the most secure mobile platforms available today. But there are examples of malware that have successfully targeted iOS despite the mandatory code signing, app review process, sandboxing, encryption, and lack of side-loading support.
This talk will explain built-in security mechanisms in iOS, common security issues that affect iOS developers and attack examples against iOS devices. We’ll cover XARA (cross-app resource attacks), masque attacks, SSL/TLS security, reverse engineering and how attackers try to circumvent the security rules enforced by the operating system. For each attack mentioned, we'll also discuss mitigation strategies.
This talk will explain built-in security mechanisms in iOS, common security issues that affect iOS developers and attack examples against iOS devices. We’ll cover XARA (cross-app resource attacks), masque attacks, SSL/TLS security, reverse engineering and how attackers try to circumvent the security rules enforced by the operating system. For each attack mentioned, we'll also discuss mitigation strategies.
