More Bugs In More Places: Secure Development On Moble Platforms

Black Hat USA 2010

Presented by: David Kane-Parry
Date: Wednesday July 28, 2010
Time: 11:15 - 12:30
Location: Augustus 3+4
Track: Mobile

Nothing succeeds like success, and with the attention garnered by Appleā€™s App Store, many companies are either looking to port existing applications to or develop exclusive applications for the top mobile platforms: Blackberry, iPhone, Windows Mobile, and Android.

Each of these platforms provides the would-be developer with a SDK to do the heavy-lifting of coding, but can they be trusted to carry that weight? Just as some languages make it easier or harder to develop secure applications, so it is with SDKs. One SDK may provide robust cryptographic functions, another may restrict hardware access, and yet another may enforce strict memory management. This talk will compare the top four SDKs in terms of the security features they provide and lack, to help new mobile developers decide which is the safest and most dangerous for their applications.

David Kane-Parry

Leviathan Security Group David Kane-Parry has over eight years of professional experience in security research and engineering for a wide variety of Fortune 500 companies. David is currently a Principal Security Consultant for Leviathan Security Group.


KhanFu - Mobile schedules for INFOSEC conferences.
Mobile interface | Alternate Formats