Inside The App: All Your Data Are Belong To Me presented at ShmooCon 2011

by Sarah Edwards,

Tags: Security Analysis


Summary : Everyone knows their life is stored in their iPhones and iPads, but to what extent? Forensic software can quickly and easily extract the data contained in the default applications such as Address Book and Safari. This software can be run by the most inexperienced of investigators and is often just a click of a button to perform an “analysis”. iOS applications have become very prevalent and many people do not know the amount of revealing data that can be found in them.

This presentation attempts to show the extent to which a person’s private information can be exploited by doing simple analysis of iOS applications. People have the right to know what data an app may store about them. This private information may be used by malicious adversaries, intelligence agencies or law enforcement. Take the time - know your apps.

Sarah Edwards: Sarah is an experienced digital forensic examiner who has worked with various federal law enforcement agencies. She has performed a variety of investigations including criminal, counter-intelligence, and counter-terrorism. Sarah has a BS in Information Technology from Rochester Institute of Technology (2004) and a MS in Information Assurance from Capitol College (2010). Sarah’s day job at Harris Corporation consists of working with federal law enforcement to investigate intrusion incidents.