Course Learning Objectives
- Learn to communicate the business risks to developing mobile apps for any platform.
- Discover risks for mobile apps as it relates to important security concepts of data at rest, data in transit and data at runtime
- Describe how the threat landscape of a mobile device is different than what we've known for web applications today and the OWASP Mobile Top 10.
In this code-agnostic course, students will learn important mobile security concepts to build more secure mobile applications. We will dive into understanding what the risks are to developing insecure mobile applications and how hackers can target the app, the infrastructure and the mobile device itself. Students will learn about the current threat landscape with different mobile operating systems, un-official means of loading applications on devices and the business risk to developing insecure mobile applications. The course will deep dive into three key categories of business risk. Data at rest speaks to protecting the data stored on the mobile device by the application including preferences, databases, and more. Data in transit speaks to protecting the transmission of data from your app to your servers, including hardening your protocols. Data at runtime speaks to protecting the application and memory while it is running on the device. Each of these important security concepts will help students build stronger, more resilient mobile applications.
Mobile application developers / Mobile application architects
Tailored learning - 60 minutes total
MOB101 - Defending Mobile