This week, security-savvy developers and security experts descend upon Washington D.C. for OWASP’s 13th Annual AppSecUSA 2016 conference. Training sessions occur tomorrow and Wednesday, with full conference programming beginning Thursday. NowSecure is a proud supporter of OWASP, its mission, and the contributions OWASP and the AppSecUSA 2016 event make to mobile app security.
The long-term costs of design choices that maximize short-term convenience. They far outweigh the benefits.
Introduction One of the core designs of the Android operating system’s sandbox is to assign different applications a unique user identifier (UID). By doing this, Android reuses the underlying Linux kernel and filesystem properties to enforce boundaries. There are certain situations where apps may share the same UID, but that requires they be signed with
viaForensics developer Chris Lane wrote a program called “watchtower,î a static analysis tool that can be used to locate hazardous code within a project.
viaForensics hilights for the month of May
42+ Best Practices for Secure Mobile Development