Explore the intricacies of mobile application privacy and analytics in this 29-minute conference talk from OWASP Global AppSec Tel Aviv. Delve into the extent of data capture by business applications during mobile app usage, addressing concerns for developers, security engineers, and curious users alike. Examine the safeguards and authentication processes surrounding analytics portals, and gain insights into the content and frequency of data reporting by popular mobile applications. Learn to make informed decisions about personal and client data protection by understanding the scope of data exposure in mobile apps. Benefit from the expertise of Kevin Cody, a Principal Application Security Consultant, as he dissects mobile apps and their analytic products to reveal the inner workings of data tracking and reporting mechanisms.
Dissecting Mobile Application Privacy and Analytics
Overview
Syllabus
Intro
About Kevin
Objectives
Cambridge Analytics
Rolling dumpster fire
Imperium
Analytics
Drive the Business
Analytics Services
JavaScript
SDK
HTTP
Analytics Engine
Google and Apple
Firebase
Questions to Ask
Do Not Use
What to Do
Questions
Taught by
OWASP Foundation
