Loading…
Back To Schedule
Thursday, September 18 • 1:00pm - 1:45pm
iOS App Integrity: Got Any?

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Tweet Share
iOS apps are vulnerable to static analysis and attack through binary code patching. Incorporating jailbreak and debugger detection algorithms can be rendered useless with a quick binary patch. Once patched the app can be further exploited, its app data stolen, and even cloned. The iMAS research team, the team that brought Encrypted CoreData (ECD) to Github open source, has your back! At this talk we will introduce open source Encrypted Code Modules (ECM) as a technique to protect sensitive enterprise iOS applications. Using ECM as the base we will demonstrate an iOS app anti-tamper technique that is considerably more resistant to patching. We will walk through this step-by-step process to make your iOS apps more secure and … authentic.
Speakers
GB

Gavin Black

Lead Software Engineer, MITRE
Gavin Black is a lead software engineer working for the MITRE Corp, a federal research and development center. Currently he has been focused on software security and systems defense. Part of those efforts include researching and developing controls to mitigate weaknesses in iOS... Read More →
avatar for Gregg Ganley

Gregg Ganley

Principal Investigator iOS Security Research, MITRE Corp
23+ software development and management experience Education: MSCS, BSEE. Active research and development in iOS security, Android development, Ruby on Rails web apps, and project leadership. For the past five years his passion has been in the mobile field and in particular mobile... Read More →

iMAS Sep2014 Owasp AppSEC preso(2) pptx
Thursday September 18, 2014 1:00pm - 1:45pm MDT
Colorado Ballroom G-J [Builders] Denver Marriott City Center
  Session, Builders