GOTO is a vendor independent international software development conference with more that 90 top speaker and 1300 attendees. The conference cover topics such as .Net, Java, Open Source, Agile, Architecture and Design, Web, Cloud, New Languages and Processes

Scott Alexander-Bown, Lead Android Developer at Intohand

Scott Alexander-Bown

Biography: Scott Alexander-Bown

Scott is lead Android Developer at Intohand and co-author of the Android Security Cookbook. Founder of SWmobile, a mobile developer focused meetup.com group with 500+ members. Primary maintainer for the following open source Android security libraries Secure Preferences and AESCrypt-Android. Enjoys running, Mexican food, Belgium beer and retro gaming.
 
Twitter: @scottyab 

Presentation: The Android security jungle: pitfalls, threats and survival tips

Track: Android / Time: Tuesday 11:30 - 12:20 / Location: Christiansborg

Global mobile adoption is spreading like wildfire, pervasive government surveillance programs are coming to light and major internet security exploits are being uncovered. This results in increased awareness from users, managers and developers for the dire need for rigorous security in deployed code. While mobile device security can be helped via mobile device management (MDM) solutions it’s our responsibility as app developers/publishers to ensure our apps protect user privacy and critical business data. The problem is securing your Android app and data is not always obvious or well documented.

This talk will cover current Android app threats and look at how with freely available tools we can easily reverse engineer an Android app. After a brief introduction to Android platform security and how to protected app components, we’ll cover enhanced SSL validation, encryption, tamper protection and advanced obfuscation techniques. We will also focus on leveraging open source commercially viable libraries allowing us to increase our app’s security with minimal effort.

These best practise techniques will arm you with practical solutions that can help you survive in the Android security jungle.