For the Love of God, DEFEND YOUR MOBILE APPS! presented at BSidesColumbus 2014

by Jerod Brennen,

Summary : Mobile is sexy. I get it. But companies are giving into corporate peer pressure and publishing mobile apps before integrating appsec into the mobile app dev process. You can't monitor which attackers are downloading your apps from iTunes and Google Play and then deconstructing the apps in order to find exploitable weaknesses. You can, however, teach your developers how to develop and deploy a secure mobile app. Give me 55 minutes, and I'll show you a few tips, tricks, and tools you can use to get the job done.