First Steps in Mobile Security Testing

120-minute Workshop

The mobile space can be daunting, and security intimidating - yet there’s no need to feel overwhelmed by either of them. Take your first steps in mobile security testing from wherever you are.

Timetable

2:45 p.m. – 4:45 p.m. Thursday 21st

Room

Room D3+D4 - Track 8: Workshops

Audience

Testers, quality engineers, developers

Required

Laptop with internet connection

Key-Learnings

  • Learn what to look for to discover security problems for mobile
  • Practice mobile security testing hands-on in a safe environment to figure out how to look for issues
  • Gain insights and confidence to go deeper into both mobile and security topics
  • Understand security concepts and what to advocate for to build a secure mobile product

You’re working on a mobile app - maybe it’s your first time, or you are experienced already. Security testing is an area you haven’t come in touch with yet - or you’ve done a bunch of it, just not for mobile. Whatever your starting point, here’s your chance to take your first steps: on mobile, on security, or both!

In this hands-on workshop, we will interact with an intentionally vulnerable Android app and its ecosystem. Step by step, we will learn together what to look out for to discover security problems. Analyzing our own code, third-party dependencies, and data we store on the client side for flaws. Testing the app at runtime to find exploitable vulnerabilities. Looking at relevant backend services, storage, and related infrastructure. We need to consider all parts of the product to build it in a secure way.

Mobile and security can each be overwhelming areas by themselves, yet they don’t have to be - and so does mobile security. There’s always a first step and the next one to follow!

Related Sessions

Virtual Pass session
Wed, Nov 20 • 10:45 a.m. – 11:30 a.m.
Room F3 - Track 3: Talks

25-minute Talk

Virtual Pass session
Thu, Nov 21 • 10:45 a.m. – 11:30 a.m.
Room F1 - Track 1: Talks

25-minute Talk