LogoSquare

Denim Group Website

About

My Photo
Powered by TypePad

Recent Posts

Categories

Subscribe to this blog's feed

Archives

Add me to your TypePad People list
Denim Group



Programming Blogs - Blog Catalog Blog Directory

« Denim Group at OWASP AppSec USA 2010 in Irvine | Main | Denim Group Named to Inc. Magazine 5000 List of Fastest Growing Companies For 3rd Year in a Row »

September 19, 2010

Smart Phones Dumb Apps: Slides and Code Online

By Dan Cornell

I just got back from two weeks traveling to Los Angeles (Irvine) and Dublin, Ireland for OWASP conferences where I gave my talk “Smart Phones Dumb Apps”  The talk looks at a generic threat model for a smartphone application and then walks through how attackers can take the applications apart with examples for both Android and iPhone.

Here is the video of my session at OWASP AppSec Irvine 2010:

Dan Cornell, Smart Phones with Dumb Apps: Threat Modeling for Mobile Applications from AppSec USA 2010 on Vimeo.

The slides are available here:

Smart Phones Dumb Apps
View more presentations from Denim Group

The code used to automate parts of the analysis can be found in the Google Code repository here:

Google Code Repository for Smart Phones Dumb Apps

Also, Colin Watson did a quick writeup on the presentation in Ireland.

This is an ongoing area of research for us so please keep an eye on the blog, Google Code and come see upcoming presentations at Austin LASCON 2010 and OWASP DC 2010.

Contact us for help developing and deploying secure smartphone applications.

--Dan

dan _at_ denimgroup.com

@danielcornell

Posted via email from Denim Group's Posterous

September 19, 2010 |

Technorati Tags: , , , , , , , , , , , , , , ,

TrackBack

TrackBack URL for this entry:
http://www.typepad.com/services/trackback/6a00d83455143b69e20133f4609c47970b

Listed below are links to weblogs that reference Smart Phones Dumb Apps: Slides and Code Online:

Comments

Verify your Comment

Previewing your Comment

Posted by:  | 

This is only a preview. Your comment has not yet been posted.

Working...
Your comment could not be posted. Error type:
Your comment has been posted. Post another comment

The letters and numbers you entered did not match the image. Please try again.

As a final step before posting your comment, enter the letters and numbers you see in the image below. This prevents automated programs from posting comments.

Having trouble reading this image? View an alternate.

Working...

Post a comment