Martin Vigo is a Product Security Engineer with a special interest in Web and Mobile Security. He also has extensive background as a Software Engineer with over 5 years of work experience. Martin does penetration testing for a living but also likes to hunt for security issues in his spare time. He enjoys the challenge of finding vulnerabilities in mobile apps he uses on a daily basis and has been acknowledged by several companies for doing a responsible disclosure of his findings.
Mobile apps security. Beyond XSS, CSRF and SQLi
Speakers: Martin Vigo, Sergey Gorbaty
This talk will be focused on how to develop secure mobile apps. We will look into specifics regarding mobile development and what are the best practices. Usually developers take into account the well-known vulnerabilities such as SQLi, XSS, CSRF, etc. forgetting about those impacting specifically the mobile platform. We will make an emphasis on all those other issues affecting the mobile platform such as protocols, secure storage, secrets, caching, logging, etc.
- Not Interested