Manikanta Garikipati

SumUp Limited, Senior Software Engineer

Talk Title

Enhancing Mobile App Security: Key Strategies and Insights from my App’s PEN & VAPT Test Results

Room

Glass

Date

03.07.2024

Time

17:20 > 40 min

Share

on Twitter

This talk is about how can we ensure that our app binaries are safe and the data transmission and storage is secure.

In this brief talk i'm going to cover about below topics and my experience of a PEN and VAPT test feedback of our app:

1. SSL Pinning and the support that networking libraries offer.
2. Shared Preferences, storage , ways to exploit them ( including EncryptedSharedPreferences) and how to secure them
3. Various test strategies ( SAST and DAST) and recommendations.
4. Weakest areas and entry points into android apps (Broadcast receivers, webviews etc.) and how to secure those spots with realtime examples.
5. How to periodically check your app security status and the open source libraries that help us achieve this.

Speaker Bio

Mani is an Engineer based out of Berlin, He is working on android from its early versions and is passionate about the opportunities the Android offers to the digital ecosystem, After having worked on Android for nearly 6 years, he started working on Backend to bring the best end to end, functional experiences to the users. Mani has been involved with Android development and the Android community for a long time before joining SumUp.

Menu