SlideShare ist ein Scribd-Unternehmen logo

Webinar Security: Apps of Steel

Als PPTX, PDF herunterladen
Service2Media
Service2Media

Service2Media builds highly secure Apps using a holistic approach that combines a secure and well structured development environment with the application of the latest security techniques. The result is Apps of Steel. This webinar will explain what we have done, how we work and what we could do for you. What you will take-away from this webinar: Understand the key security issues and their affect on the market for mobile App solutions Why a secure and well structured App Platform is a better way to build Secure Apps The capabilities we have incorporated into the platform that make the Apps we deliver more secure How to use our platform and services to build your own App portfolio based on this solution

TechnologieBildung
1 von 11
SECURITY WEBINAR APPS OF STEEL Martin Gandar Derk Tegeler Strategic Marketing Director Security Director
AGENDA • State of mobile security • Mitigation strategies • Security by design • Software development • M2Active™, the App Lifecycle Platform
STATE OF MOBILE SECURITY • Software on the move • The mobile operating system • The apps and the stores • The software distribution problem • Malware
MOBILE SECURITY: NETWORKS • Networks • Control • The need for encryption against MITM attacks – Telephone networks – Public Wi-Fi hotspots – rogue access points • Issues with DNS • Issues with the Public Key Infrastructure (PKI)
MITIGATION STRATEGIES • Accountability in business processes • Budget • Risk analysis • Risk = impact*likelihood • Information classification and protection rules per class for: • Transmission, Storage & Processing • Multiple information transmission channels • Awareness of known vulnerabilities
SECURITY BY DESIGN • Information classification • Risk analysis • Threat modelling • Dependencies • Use several security levels • Good key management
SOFTWARE DEVELOPMENT • Secure coding standards • Defensive programming • Don’t leak! • Document: in the code, release notes and all other documentation. • Collaborative development • Maintenance • Code transfers • The App lifecycle
THE APP LIFECYCLE PLATFORM ™ - Encrypted object code providing integrity and confidentiality of the software package - API’s - Secure Coding Standards giving our partners a strong basis - Templates, best practices and code snippets
M2ACTIVE API’S - API’s: - Authentication Manager - Crypto / cryptographic functions: - Base64 encoding and decoding - SHA-1 and SHA-256 hashing - AES encryption and decryption - Key generation algorithms - HTTPS support, including OAUTH
THANK YOU FOR YOUR TIME NEXT WEBINAR: 18th OF JUNE: ORGANIZING FOR ENTERPRISE APP PORTFOLIOS
SECURITY WEBINAR APPS OF STEEL Martin Gandar Derk Tegeler Strategic Marketing Director Security Executive mgandar@service2media.com dtegeler@service2media.com 0044 7770 366 566 0031 6 16 47 29 52

Empfohlen

Presentation
PresentationPresentation
PresentationKorey Whitmore
 
Webinar Mobile Maturity #6: Connecting Apps: Back-end and Integration
Webinar Mobile Maturity #6: Connecting Apps: Back-end and IntegrationWebinar Mobile Maturity #6: Connecting Apps: Back-end and Integration
Webinar Mobile Maturity #6: Connecting Apps: Back-end and IntegrationService2Media
 
Webinar app testing and distribution
Webinar app testing and distribution Webinar app testing and distribution
Webinar app testing and distribution Service2Media
 
Webinar app development & maintenance
Webinar app development & maintenanceWebinar app development & maintenance
Webinar app development & maintenanceService2Media
 
CERTA Push Messaging - Product Launch
CERTA Push Messaging - Product Launch CERTA Push Messaging - Product Launch
CERTA Push Messaging - Product Launch Service2Media
 
Service2Media: Webinar Security & Management (17 March 2014) by Derk Tegeler
Service2Media: Webinar Security & Management (17 March 2014) by Derk Tegeler Service2Media: Webinar Security & Management (17 March 2014) by Derk Tegeler
Service2Media: Webinar Security & Management (17 March 2014) by Derk Tegeler Service2Media
 
Webinar 2: Service2Media - Mobile Maturity Model: Initiation & design 13 Feb ...
Webinar 2: Service2Media - Mobile Maturity Model: Initiation & design 13 Feb ...Webinar 2: Service2Media - Mobile Maturity Model: Initiation & design 13 Feb ...
Webinar 2: Service2Media - Mobile Maturity Model: Initiation & design 13 Feb ...Service2Media
 
Webinar 1: Service2Media - app strategy and organisation
Webinar 1: Service2Media - app strategy and organisationWebinar 1: Service2Media - app strategy and organisation
Webinar 1: Service2Media - app strategy and organisationService2Media
 

Empfohlen

Presentation
PresentationPresentation
PresentationKorey Whitmore
 
Webinar Mobile Maturity #6: Connecting Apps: Back-end and Integration
Webinar Mobile Maturity #6: Connecting Apps: Back-end and IntegrationWebinar Mobile Maturity #6: Connecting Apps: Back-end and Integration
Webinar Mobile Maturity #6: Connecting Apps: Back-end and IntegrationService2Media
 
Webinar app testing and distribution
Webinar app testing and distribution Webinar app testing and distribution
Webinar app testing and distribution Service2Media
 
Webinar app development & maintenance
Webinar app development & maintenanceWebinar app development & maintenance
Webinar app development & maintenanceService2Media
 
CERTA Push Messaging - Product Launch
CERTA Push Messaging - Product Launch CERTA Push Messaging - Product Launch
CERTA Push Messaging - Product Launch Service2Media
 
Service2Media: Webinar Security & Management (17 March 2014) by Derk Tegeler
Service2Media: Webinar Security & Management (17 March 2014) by Derk Tegeler Service2Media: Webinar Security & Management (17 March 2014) by Derk Tegeler
Service2Media: Webinar Security & Management (17 March 2014) by Derk Tegeler Service2Media
 
Webinar 2: Service2Media - Mobile Maturity Model: Initiation & design 13 Feb ...
Webinar 2: Service2Media - Mobile Maturity Model: Initiation & design 13 Feb ...Webinar 2: Service2Media - Mobile Maturity Model: Initiation & design 13 Feb ...
Webinar 2: Service2Media - Mobile Maturity Model: Initiation & design 13 Feb ...Service2Media
 
Webinar 1: Service2Media - app strategy and organisation
Webinar 1: Service2Media - app strategy and organisationWebinar 1: Service2Media - app strategy and organisation
Webinar 1: Service2Media - app strategy and organisationService2Media
 
Webinar Push & Beacons
Webinar Push & BeaconsWebinar Push & Beacons
Webinar Push & BeaconsService2Media
 
Webinar Service2Media and SDL - CX Management and mobile apps
Webinar Service2Media and SDL - CX Management and mobile apps Webinar Service2Media and SDL - CX Management and mobile apps
Webinar Service2Media and SDL - CX Management and mobile apps Service2Media
 
Webinar SAP connected mobile apps with the app lifecycle platform
Webinar SAP connected mobile apps with the app lifecycle platformWebinar SAP connected mobile apps with the app lifecycle platform
Webinar SAP connected mobile apps with the app lifecycle platformService2Media
 
Webinar sap mobile apps service2 media
Webinar sap mobile apps service2 media Webinar sap mobile apps service2 media
Webinar sap mobile apps service2 media Service2Media
 
M2 active cloud push
M2 active cloud pushM2 active cloud push
M2 active cloud pushService2Media
 
Service2 media interview brookz
Service2 media interview brookzService2 media interview brookz
Service2 media interview brookzService2Media
 
Webinar Security: Apps of Steel transcription
Webinar Security: Apps of Steel transcriptionWebinar Security: Apps of Steel transcription
Webinar Security: Apps of Steel transcriptionService2Media
 
Webinar The App Lifecycle Platform
Webinar The App Lifecycle PlatformWebinar The App Lifecycle Platform
Webinar The App Lifecycle PlatformService2Media
 
Webinar Media Apps: 10 Question we are most asked
Webinar Media Apps: 10 Question we are most askedWebinar Media Apps: 10 Question we are most asked
Webinar Media Apps: 10 Question we are most askedService2Media
 
Energy Insight Utilities Webinar Service2Media
Energy Insight Utilities Webinar Service2MediaEnergy Insight Utilities Webinar Service2Media
Energy Insight Utilities Webinar Service2MediaService2Media
 
Webinar Service2Media: new era of financial engagement apps 15.03.12
Webinar Service2Media: new era of financial engagement apps 15.03.12Webinar Service2Media: new era of financial engagement apps 15.03.12
Webinar Service2Media: new era of financial engagement apps 15.03.12Service2Media
 
Apps for insurance
Apps for insuranceApps for insurance
Apps for insuranceService2Media
 
Global alliance network
Global alliance networkGlobal alliance network
Global alliance networkService2Media
 
Apps for banking
Apps for bankingApps for banking
Apps for bankingService2Media
 
Corporate brochure
Corporate brochureCorporate brochure
Corporate brochureService2Media
 
Apps for travel
Apps for travelApps for travel
Apps for travelService2Media
 
Apps for publishers
Apps for publishersApps for publishers
Apps for publishersService2Media
 
Apps for mobile tv
Apps for mobile tvApps for mobile tv
Apps for mobile tvService2Media
 
Apps for media
Apps for mediaApps for media
Apps for mediaService2Media
 
Apps for healthcare
Apps for healthcareApps for healthcare
Apps for healthcareService2Media
 
What's New in Teams Calling, Meetings and Devices March 2024
What's New in Teams Calling, Meetings and Devices March 2024What's New in Teams Calling, Meetings and Devices March 2024
What's New in Teams Calling, Meetings and Devices March 2024Stephanie Beckett
 
What is DBT - The Ultimate Data Build Tool.pdf
What is DBT - The Ultimate Data Build Tool.pdfWhat is DBT - The Ultimate Data Build Tool.pdf
What is DBT - The Ultimate Data Build Tool.pdfMounikaPolabathina
 

Weitere ähnliche Inhalte

Mehr von Service2Media

Webinar Push & Beacons
Webinar Push & BeaconsWebinar Push & Beacons
Webinar Push & BeaconsService2Media
 
Webinar Service2Media and SDL - CX Management and mobile apps
Webinar Service2Media and SDL - CX Management and mobile apps Webinar Service2Media and SDL - CX Management and mobile apps
Webinar Service2Media and SDL - CX Management and mobile apps Service2Media
 
Webinar SAP connected mobile apps with the app lifecycle platform
Webinar SAP connected mobile apps with the app lifecycle platformWebinar SAP connected mobile apps with the app lifecycle platform
Webinar SAP connected mobile apps with the app lifecycle platformService2Media
 
Webinar sap mobile apps service2 media
Webinar sap mobile apps service2 media Webinar sap mobile apps service2 media
Webinar sap mobile apps service2 media Service2Media
 
M2 active cloud push
M2 active cloud pushM2 active cloud push
M2 active cloud pushService2Media
 
Service2 media interview brookz
Service2 media interview brookzService2 media interview brookz
Service2 media interview brookzService2Media
 
Webinar Security: Apps of Steel transcription
Webinar Security: Apps of Steel transcriptionWebinar Security: Apps of Steel transcription
Webinar Security: Apps of Steel transcriptionService2Media
 
Webinar The App Lifecycle Platform
Webinar The App Lifecycle PlatformWebinar The App Lifecycle Platform
Webinar The App Lifecycle PlatformService2Media
 
Webinar Media Apps: 10 Question we are most asked
Webinar Media Apps: 10 Question we are most askedWebinar Media Apps: 10 Question we are most asked
Webinar Media Apps: 10 Question we are most askedService2Media
 
Energy Insight Utilities Webinar Service2Media
Energy Insight Utilities Webinar Service2MediaEnergy Insight Utilities Webinar Service2Media
Energy Insight Utilities Webinar Service2MediaService2Media
 
Webinar Service2Media: new era of financial engagement apps 15.03.12
Webinar Service2Media: new era of financial engagement apps 15.03.12Webinar Service2Media: new era of financial engagement apps 15.03.12
Webinar Service2Media: new era of financial engagement apps 15.03.12Service2Media
 
Global alliance network
Global alliance networkGlobal alliance network
Global alliance networkService2Media
 

Mehr von Service2Media (20)

Webinar Push & Beacons
Webinar Push & BeaconsWebinar Push & Beacons
Webinar Push & Beacons
 
Webinar Service2Media and SDL - CX Management and mobile apps
Webinar Service2Media and SDL - CX Management and mobile apps Webinar Service2Media and SDL - CX Management and mobile apps
Webinar Service2Media and SDL - CX Management and mobile apps
 
Webinar SAP connected mobile apps with the app lifecycle platform
Webinar SAP connected mobile apps with the app lifecycle platformWebinar SAP connected mobile apps with the app lifecycle platform
Webinar SAP connected mobile apps with the app lifecycle platform
 
Webinar sap mobile apps service2 media
Webinar sap mobile apps service2 media Webinar sap mobile apps service2 media
Webinar sap mobile apps service2 media
 
M2 active cloud push
M2 active cloud pushM2 active cloud push
M2 active cloud push
 
Service2 media interview brookz
Service2 media interview brookzService2 media interview brookz
Service2 media interview brookz
 
Webinar Security: Apps of Steel transcription
Webinar Security: Apps of Steel transcriptionWebinar Security: Apps of Steel transcription
Webinar Security: Apps of Steel transcription
 
Webinar The App Lifecycle Platform
Webinar The App Lifecycle PlatformWebinar The App Lifecycle Platform
Webinar The App Lifecycle Platform
 
Webinar Media Apps: 10 Question we are most asked
Webinar Media Apps: 10 Question we are most askedWebinar Media Apps: 10 Question we are most asked
Webinar Media Apps: 10 Question we are most asked
 
Energy Insight Utilities Webinar Service2Media
Energy Insight Utilities Webinar Service2MediaEnergy Insight Utilities Webinar Service2Media
Energy Insight Utilities Webinar Service2Media
 
Webinar Service2Media: new era of financial engagement apps 15.03.12
Webinar Service2Media: new era of financial engagement apps 15.03.12Webinar Service2Media: new era of financial engagement apps 15.03.12
Webinar Service2Media: new era of financial engagement apps 15.03.12
 
Apps for insurance
Apps for insuranceApps for insurance
Apps for insurance
 
Global alliance network
Global alliance networkGlobal alliance network
Global alliance network
 
Apps for banking
Apps for bankingApps for banking
Apps for banking
 
Corporate brochure
Corporate brochureCorporate brochure
Corporate brochure
 
Apps for travel
Apps for travelApps for travel
Apps for travel
 
Apps for publishers
Apps for publishersApps for publishers
Apps for publishers
 
Apps for mobile tv
Apps for mobile tvApps for mobile tv
Apps for mobile tv
 
Apps for media
Apps for mediaApps for media
Apps for media
 
Apps for healthcare
Apps for healthcareApps for healthcare
Apps for healthcare
 

Kürzlich hochgeladen

What's New in Teams Calling, Meetings and Devices March 2024
What's New in Teams Calling, Meetings and Devices March 2024What's New in Teams Calling, Meetings and Devices March 2024
What's New in Teams Calling, Meetings and Devices March 2024Stephanie Beckett
 
What is DBT - The Ultimate Data Build Tool.pdf
What is DBT - The Ultimate Data Build Tool.pdfWhat is DBT - The Ultimate Data Build Tool.pdf
What is DBT - The Ultimate Data Build Tool.pdfMounikaPolabathina
 
Dev Dives: Streamline document processing with UiPath Studio Web
Dev Dives: Streamline document processing with UiPath Studio WebDev Dives: Streamline document processing with UiPath Studio Web
Dev Dives: Streamline document processing with UiPath Studio WebUiPathCommunity
 
"ML in Production",Oleksandr Bagan
"ML in Production",Oleksandr Bagan"ML in Production",Oleksandr Bagan
"ML in Production",Oleksandr BaganFwdays
 
TeamStation AI System Report LATAM IT Salaries 2024
TeamStation AI System Report LATAM IT Salaries 2024TeamStation AI System Report LATAM IT Salaries 2024
TeamStation AI System Report LATAM IT Salaries 2024Lonnie McRorey
 
SAP Build Work Zone - Overview L2-L3.pptx
SAP Build Work Zone - Overview L2-L3.pptxSAP Build Work Zone - Overview L2-L3.pptx
SAP Build Work Zone - Overview L2-L3.pptxNavinnSomaal
 
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024BookNet Canada
 
SIP trunking in Janus @ Kamailio World 2024
SIP trunking in Janus @ Kamailio World 2024SIP trunking in Janus @ Kamailio World 2024
SIP trunking in Janus @ Kamailio World 2024Lorenzo Miniero
 
unit 4 immunoblotting technique complete.pptx
unit 4 immunoblotting technique complete.pptxunit 4 immunoblotting technique complete.pptx
unit 4 immunoblotting technique complete.pptxBkGupta21
 
The Role of FIDO in a Cyber Secure Netherlands: FIDO Paris Seminar.pptx
The Role of FIDO in a Cyber Secure Netherlands: FIDO Paris Seminar.pptxThe Role of FIDO in a Cyber Secure Netherlands: FIDO Paris Seminar.pptx
The Role of FIDO in a Cyber Secure Netherlands: FIDO Paris Seminar.pptxLoriGlavin3
 
Scanning the Internet for External Cloud Exposures via SSL Certs
Scanning the Internet for External Cloud Exposures via SSL CertsScanning the Internet for External Cloud Exposures via SSL Certs
Scanning the Internet for External Cloud Exposures via SSL CertsRizwan Syed
 
"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack
"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack
"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek SchlawackFwdays
 
DevoxxFR 2024 Reproducible Builds with Apache Maven
DevoxxFR 2024 Reproducible Builds with Apache MavenDevoxxFR 2024 Reproducible Builds with Apache Maven
DevoxxFR 2024 Reproducible Builds with Apache MavenHervé Boutemy
 
Developer Data Modeling Mistakes: From Postgres to NoSQL
Developer Data Modeling Mistakes: From Postgres to NoSQLDeveloper Data Modeling Mistakes: From Postgres to NoSQL
Developer Data Modeling Mistakes: From Postgres to NoSQLScyllaDB
 
Commit 2024 - Secret Management made easy
Commit 2024 - Secret Management made easyCommit 2024 - Secret Management made easy
Commit 2024 - Secret Management made easyAlfredo García Lavilla
 
SALESFORCE EDUCATION CLOUD | FEXLE SERVICES
SALESFORCE EDUCATION CLOUD | FEXLE SERVICESSALESFORCE EDUCATION CLOUD | FEXLE SERVICES
SALESFORCE EDUCATION CLOUD | FEXLE SERVICESmohitsingh558521
 
Unleash Your Potential - Namagunga Girls Coding Club
Unleash Your Potential - Namagunga Girls Coding ClubUnleash Your Potential - Namagunga Girls Coding Club
Unleash Your Potential - Namagunga Girls Coding ClubKalema Edgar
 
How AI, OpenAI, and ChatGPT impact business and software.
How AI, OpenAI, and ChatGPT impact business and software.How AI, OpenAI, and ChatGPT impact business and software.
How AI, OpenAI, and ChatGPT impact business and software.Curtis Poe
 
Hyperautomation and AI/ML: A Strategy for Digital Transformation Success.pdf
Hyperautomation and AI/ML: A Strategy for Digital Transformation Success.pdfHyperautomation and AI/ML: A Strategy for Digital Transformation Success.pdf
Hyperautomation and AI/ML: A Strategy for Digital Transformation Success.pdfPrecisely
 
The Fit for Passkeys for Employee and Consumer Sign-ins: FIDO Paris Seminar.pptx
The Fit for Passkeys for Employee and Consumer Sign-ins: FIDO Paris Seminar.pptxThe Fit for Passkeys for Employee and Consumer Sign-ins: FIDO Paris Seminar.pptx
The Fit for Passkeys for Employee and Consumer Sign-ins: FIDO Paris Seminar.pptxLoriGlavin3
 

Kürzlich hochgeladen (20)

What's New in Teams Calling, Meetings and Devices March 2024
What's New in Teams Calling, Meetings and Devices March 2024What's New in Teams Calling, Meetings and Devices March 2024
What's New in Teams Calling, Meetings and Devices March 2024
 
What is DBT - The Ultimate Data Build Tool.pdf
What is DBT - The Ultimate Data Build Tool.pdfWhat is DBT - The Ultimate Data Build Tool.pdf
What is DBT - The Ultimate Data Build Tool.pdf
 
Dev Dives: Streamline document processing with UiPath Studio Web
Dev Dives: Streamline document processing with UiPath Studio WebDev Dives: Streamline document processing with UiPath Studio Web
Dev Dives: Streamline document processing with UiPath Studio Web
 
"ML in Production",Oleksandr Bagan
"ML in Production",Oleksandr Bagan"ML in Production",Oleksandr Bagan
"ML in Production",Oleksandr Bagan
 
TeamStation AI System Report LATAM IT Salaries 2024
TeamStation AI System Report LATAM IT Salaries 2024TeamStation AI System Report LATAM IT Salaries 2024
TeamStation AI System Report LATAM IT Salaries 2024
 
SAP Build Work Zone - Overview L2-L3.pptx
SAP Build Work Zone - Overview L2-L3.pptxSAP Build Work Zone - Overview L2-L3.pptx
SAP Build Work Zone - Overview L2-L3.pptx
 
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
 
SIP trunking in Janus @ Kamailio World 2024
SIP trunking in Janus @ Kamailio World 2024SIP trunking in Janus @ Kamailio World 2024
SIP trunking in Janus @ Kamailio World 2024
 
unit 4 immunoblotting technique complete.pptx
unit 4 immunoblotting technique complete.pptxunit 4 immunoblotting technique complete.pptx
unit 4 immunoblotting technique complete.pptx
 
The Role of FIDO in a Cyber Secure Netherlands: FIDO Paris Seminar.pptx
The Role of FIDO in a Cyber Secure Netherlands: FIDO Paris Seminar.pptxThe Role of FIDO in a Cyber Secure Netherlands: FIDO Paris Seminar.pptx
The Role of FIDO in a Cyber Secure Netherlands: FIDO Paris Seminar.pptx
 
Scanning the Internet for External Cloud Exposures via SSL Certs
Scanning the Internet for External Cloud Exposures via SSL CertsScanning the Internet for External Cloud Exposures via SSL Certs
Scanning the Internet for External Cloud Exposures via SSL Certs
 
"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack
"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack
"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack
 
DevoxxFR 2024 Reproducible Builds with Apache Maven
DevoxxFR 2024 Reproducible Builds with Apache MavenDevoxxFR 2024 Reproducible Builds with Apache Maven
DevoxxFR 2024 Reproducible Builds with Apache Maven
 
Developer Data Modeling Mistakes: From Postgres to NoSQL
Developer Data Modeling Mistakes: From Postgres to NoSQLDeveloper Data Modeling Mistakes: From Postgres to NoSQL
Developer Data Modeling Mistakes: From Postgres to NoSQL
 
Commit 2024 - Secret Management made easy
Commit 2024 - Secret Management made easyCommit 2024 - Secret Management made easy
Commit 2024 - Secret Management made easy
 
SALESFORCE EDUCATION CLOUD | FEXLE SERVICES
SALESFORCE EDUCATION CLOUD | FEXLE SERVICESSALESFORCE EDUCATION CLOUD | FEXLE SERVICES
SALESFORCE EDUCATION CLOUD | FEXLE SERVICES
 
Unleash Your Potential - Namagunga Girls Coding Club
Unleash Your Potential - Namagunga Girls Coding ClubUnleash Your Potential - Namagunga Girls Coding Club
Unleash Your Potential - Namagunga Girls Coding Club
 
How AI, OpenAI, and ChatGPT impact business and software.
How AI, OpenAI, and ChatGPT impact business and software.How AI, OpenAI, and ChatGPT impact business and software.
How AI, OpenAI, and ChatGPT impact business and software.
 
Hyperautomation and AI/ML: A Strategy for Digital Transformation Success.pdf
Hyperautomation and AI/ML: A Strategy for Digital Transformation Success.pdfHyperautomation and AI/ML: A Strategy for Digital Transformation Success.pdf
Hyperautomation and AI/ML: A Strategy for Digital Transformation Success.pdf
 
The Fit for Passkeys for Employee and Consumer Sign-ins: FIDO Paris Seminar.pptx
The Fit for Passkeys for Employee and Consumer Sign-ins: FIDO Paris Seminar.pptxThe Fit for Passkeys for Employee and Consumer Sign-ins: FIDO Paris Seminar.pptx
The Fit for Passkeys for Employee and Consumer Sign-ins: FIDO Paris Seminar.pptx
 

Webinar Security: Apps of Steel

  • 1. SECURITY WEBINAR APPS OF STEEL Martin Gandar Derk Tegeler Strategic Marketing Director Security Director
  • 2. AGENDA • State of mobile security • Mitigation strategies • Security by design • Software development • M2Active™, the App Lifecycle Platform
  • 3. STATE OF MOBILE SECURITY • Software on the move • The mobile operating system • The apps and the stores • The software distribution problem • Malware
  • 4. MOBILE SECURITY: NETWORKS • Networks • Control • The need for encryption against MITM attacks – Telephone networks – Public Wi-Fi hotspots – rogue access points • Issues with DNS • Issues with the Public Key Infrastructure (PKI)
  • 5. MITIGATION STRATEGIES • Accountability in business processes • Budget • Risk analysis • Risk = impact*likelihood • Information classification and protection rules per class for: • Transmission, Storage & Processing • Multiple information transmission channels • Awareness of known vulnerabilities
  • 6. SECURITY BY DESIGN • Information classification • Risk analysis • Threat modelling • Dependencies • Use several security levels • Good key management
  • 7. SOFTWARE DEVELOPMENT • Secure coding standards • Defensive programming • Don’t leak! • Document: in the code, release notes and all other documentation. • Collaborative development • Maintenance • Code transfers • The App lifecycle
  • 8. THE APP LIFECYCLE PLATFORM ™ - Encrypted object code providing integrity and confidentiality of the software package - API’s - Secure Coding Standards giving our partners a strong basis - Templates, best practices and code snippets
  • 9. M2ACTIVE API’S - API’s: - Authentication Manager - Crypto / cryptographic functions: - Base64 encoding and decoding - SHA-1 and SHA-256 hashing - AES encryption and decryption - Key generation algorithms - HTTPS support, including OAUTH
  • 10. THANK YOU FOR YOUR TIME NEXT WEBINAR: 18th OF JUNE: ORGANIZING FOR ENTERPRISE APP PORTFOLIOS
  • 11. SECURITY WEBINAR APPS OF STEEL Martin Gandar Derk Tegeler Strategic Marketing Director Security Executive mgandar@service2media.com dtegeler@service2media.com 0044 7770 366 566 0031 6 16 47 29 52