This course covers the OWASP Top 10 Mobile Risks, including topics such as insecure data storage, weak server-side controls, and broken cryptography prevention tips. The course aims to teach participants how to identify and mitigate common security risks in mobile applications. The teaching method involves presenting the top 10 risks and providing prevention tips. This course is intended for individuals interested in mobile application security and those looking to enhance their knowledge of common vulnerabilities in mobile apps.
Overview
Syllabus
OWASP Top 10 Mobile Risks
Introductions
Mobile Threat Model
Top 10 Risks
Insecure Data Storage
Weak Server Side Controls
Insufficient Transport Layer Protection
Client Side Injection
Poor Authorization and Authentication
Improper Session Handling
Security Decisions Via Untrusted Inputs
Side Channel Data Leakage
M9- Broken Cryptography Prevention Tips
Sensitive Information Disclosure
Conclusion
Taught by
LASCON
