Session replay is a technique that allows app developers to view screenshots, screen recordings, and touch events of how a user interacts with an app. Depending on how this technique is implemented, it can have some serious impacts to a user’s privacy. Based on recent news event, Apple already has started to notify app developers that they should obtain consent and inform users if they are being recorded.
CTO at NowSecure
David has been knee-deep in advanced computer and mobile security research for more than 12 years. As a breaker and builder, he is passionate about solving customer challenges through innovation, teamwork and rigorous engineering practice.
David has developed ground-breaking techniques and technologies, spoken at numerous security conferences as an industry expert, and organized a dream-team of security researchers with world-class development and prototyping capabilities. David has spoken and written on a diverse range of topics from envisioning the defensive capabilities of a smart phone charger at IEEE Security and Privacy, to exploitation techniques and the impact of corporate espionage via mobile device compromise at Troopers and RSA conferences.
David and his team have discovered critical vulnerabilities, novel attack vectors, and publicly disclosed vulnerabilities impacting millions of devices and users worldwide. Members of the NowSecure research team are incredibly prolific, having developed popular open source tools and projects in the mobile security space including Frida, Radare and the Android Vulnerability Test Suite.
David previously served in security and vulnerability research roles at MITRE, the Institute for Defense Analyses, and Pitney Bowes. He has been granted two patents solving thin-client computing and mobile security challenges and has multiple patents pending. David holds a Bachelor’s degree in Computer Systems Engineering and Computer Science from Rensselaer Polytechnic Institute.