With over 3.1 million applications in the Apple AppStore and Google Play Store, and more than 7.5 billion mobile subscribers in the world, mobile application security has been shoved into the forefront of many organizations. Mobile application security encompasses many facets of security. Device security, application security, and network security all play an important role in the overall security posture of a mobile application. Part of being a pen tester of mobile applications is understanding how every security control works and how they all interact. The Open Web Application Security Project (OWASP) has aimed to help organizations understand the most prevalent mobile risks with their recently released OWASP Mobile Top Ten Risks of 2014. Join Dave as he walks through the Top Ten and explains the typical vulnerabilities found in doing penetration testing and code review of mobile applications.
Update: Here are the slides from the presentation!
Topic: Mobile Top Ten Security Risks
Speaker: David Lindner (Director of Mobile and IoT Security, nVisium)
Date: Wednesday, December 2nd
Time: 6-7pm (doors open at 5:30)
Where: Workiva (2900 University Blvd, Ames)
David is an experienced Application Security Professional with over 15 years of experience in the computer security industry. During this time, David has worked within multiple disciplines in the security field, from application development, network architecture design and support, IT security and consulting, and application security. Over the past 6 years, David has specialized in all things related to mobile applications and securing them. David has supported many different clients including financial, government, automobile, healthcare, and retail. In his spare time, David hones his Mobile and IoT testing skills by participating in numerous bug bounties.