Mani is an Engineer based out of Berlin, He is working on android from its early versions and is passionate about the opportunities the Android offers to the digital ecosystem, After having worked on Android for nearly 6 years, he started working on Backend to bring the best end to end, functional experiences to the users. Mani has been involved with Android development and the Android community for a long time before joining SumUp.
Manikanta Garikipati
Enhancing Mobile App Security: Key Strategies and Insights from my App’s PEN & VAPT Test Results
This talk is about how can we ensure that our app binaries are safe and the data transmission and storage is secure.
In this brief talk i'm going to cover about below topics and my experience of a PEN and VAPT test feedback of our app:
1. SSL Pinning and the support that networking libraries offer.
2. Shared Preferences, storage , ways to exploit them ( including EncryptedSharedPreferences) and how to secure them
3. Various test strategies ( SAST and DAST) and recommendations.
4. Weakest areas and entry points into android apps (Broadcast receivers, webviews etc.) and how to secure those spots with realtime examples.
5. How to periodically check your app security status and the open source libraries that help us achieve this.