Android Apps Security

Written by a Security Researcher that works with mobile app security for a living and experienced in auditing mobile apps across several business verticals

Updates what was a first to market Android security book at the time.

Android, Java are highly relevant technology memes for book database engines like Safari, etc.
Security in Android, other mobile and cloud are books that seem to be selling more of late in Amazon and perhaps retail channels.

Gain the information you need to design secure, useful, high-performing apps that expose end-users to as little risk as possible. This book shows you how to best design and develop Android apps with security in mind: explore concepts that you can use to secure apps and how you can use and incorporate these security features into your apps.

What You Will Learn

• Identify data that should be secured

• Use the Android APIs to ensure confidentiality and integrity of data

• Build secure apps for the enterprise

• Implement Public Key Infrastructure and encryption APIs in apps

• Master owners, access control lists, and permissions to allow user control over app properties

• Manage authentication, transport layer encryption, and server-side security Who This Book Is For

  Experienced Android app developers.

  A unique pocket guide on Android security internals and essentials Written by a security researcher that works with mobile app security for a living The author is experienced in auditing mobile apps across several business verticals

  Autorentext
  Sheran Gunasekera is a security researcher and software developer with more than 13 years of information security experience. He is director of research and development for ZenConsult Pte. Ltd., where he oversees security research in both the personal computer and mobile device platforms. Sheran has been very active in BlackBerry and mobile Java security research and was the author of the whitepaper that revealed the inner workings of the first corporate-sanctioned malware application deployed to its subscribers by the UAE telecommunications operator Etisalat. He has spoken at many security conferences in the Middle East, Europe and Asia Pacific regions and also provides training on malware analysis for mobile devices and secure software development for both web and mobile devices. He also writes articles and publishes research on his security-related blog.

  Inhalt

  1. Introduction.- 2. Recap of Secure Development Principles.- 3. App Licensing and SafetyNet.- 4. Securing Your Apps at Scale.- 5. Hacking Your App.- 6. The Tool Bag.- 7. Hacking Your App #2. 8. Rooting Your Android Device.- 9. Bypassing SSL Pinning.- 10. Looking Ahead.