Application Security for the Android Platform

Jeff is a senior security engineer at a major financial institution based on Baltimore, Maryland, where he works to secure customer and firm data.

Meer over Jeff Six

Jeff Six

Application Security for the Android Platform

Name: Application Security for the Android Platform
Author: Jeff Six

Processes, Permissions, and Other Safeguards

Specificaties

Paperback, 97 blz. | Engels

O'Reilly | 1e druk, 2012

ISBN13: 9781449315078

Rubricering

Hoofdrubriek : Computer en informatica

Juridisch : Computer en informatica

O'Reilly 1e druk, 2012 9781449315078

Verwachte levertijd ongeveer 16 werkdagen

21,40

In winkelwagen

Samenvatting

With the Android platform fast becoming a target of malicious hackers, application security is crucial. This concise book provides the knowledge you need to design and implement robust, rugged, and secure apps for any Android device. You'll learn how to identify and manage the risks inherent in your design, and work to minimize a hacker's opportunity to compromise your app and steal user data.

How is the Android platform structured to handle security? What services and tools are available to help you protect data? Up until now, no single resource has provided this vital information. With this guide, you'll learn how to address real threats to your app, whether or not you have previous experience with security issues.

- Examine Android's architecture and security model, and how it isolates the filesystem and database
- Learn how to use Android permissions and restricted system APIs
- Explore Android component types, and learn how to secure communications in a multi-tier app
- Use cryptographic tools to protect data stored on an Android device
- Secure the data transmitted from the device to other parties, including the servers that interact with your app

Specificaties

ISBN13:9781449315078

Taal:Engels

Bindwijze:paperback

Aantal pagina's:97

Uitgever:O'Reilly

Druk:1

Verschijningsdatum:17-1-2012

Hoofdrubriek:Computer en informatica

Over Jeff Six

Jeff is a senior security engineer at a major financial institution based on Baltimore, Maryland, where he works to secure customer and firm data. A major component of Jeff's job is working with developers to enhance the security of applications through education, code reviews, and deployment of modern application security techniques and frameworks. He also develops security-related applications, primarily using the Java EE platform. Prior to this position and a comparable one at another financial services firm, Jeff worked at the National Security Agency on similar application security projects and development efforts, focused on information assurance. Jeff has been a member of the Adjunct Faculty at the University of Delaware since 2000, teaching an object-oriented programming with Java course for ten years and, more recently, a course on Secure Software Design. He has been a lifeguard since 1993, and an instructor since 1995. Additionally, Jeff is an amateur triathlete, competing at the sprint, Olympic, and 70.3 distances.

Andere boeken door Jeff Six

Bekijk alle boeken

Inhoudsopgave

1. Introduction
-Application Security: Why You Should Care
-The Current State of Mobile Application Security on Android
-Security: Risk = Vulnerability + Threat + Consequences
-Evolution of Information Security: Why Applications Matter the Most
-Your Role: Protect the Data
-Secure Software Development Techniques
-Unique Characteristics of Android
-Moving On

2. Android Architecture
-Introduction to the Android Architecture
-The Linux Security Model
-The Resulting Android Security Model
-Application Signing, Attribution, and Attestation
-Process Design
-Android Filesystem Isolation
-Android Preferences and Database Isolation
-Moving up the Layers to System API and Component Permissions

3. Application Permissions
-Android Permission Basics
-Using Restricted System APIs and the User Experience
-Custom Permissions

4. Component Security and Permissions
-The Types of Android Components
-Intercomponent Signaling Using Intents
-Public and Private Components
-Imposing Restrictions on Access to Components
-Putting It All Together: Securing Communications in a Multi-Tier App

5. Protecting Stored Data
-The Threats and Vulnerabilities Against Stored Data
-Protection Principles
-Cryptography Primer: Encryption
-Cryptography Primer: Hashing
-Cryptographic Practicalities
-Key Derivation and Management
-Practical Cryptography: Applying a Technique Against a Threat

6. Securing Server Interactions
-Confidentiality and Authentication
-SSL/TLS: The Industry Standard
-Protecting Data En Route to Public Services
-Protecting Data En Route to Private Services
-Threats Against Devices Using Data in Transit
-Input Validation: The Central Tenant of Application Security
-Preventing Command Injection

7. Summary
-Key Themes
-Wrapping It Up

Anderen die dit boek kochten, kochten ook

Dieter Möckelmann

De Ai basisgids voor leraren

€ 16,95
Remko van der Pols

BiSL – Een Framework voor business informatiemanagement

€ 49,00
Jeanne Boyarsky

OCP Oracle Certified Professional Java SE 21 Developer Study Guide: Exam 1Z0–830

€ 59,10
Jan van Bon

ITIL 4 – Pocketguide 2e druk

€ 21,26
Kim Pot

Werk hand in hand met AI

€ 23,50
Willem Leijnse

Bestuurlijke informatievoorziening

€ 72,95

Uw winkelwagen

Application Security for the Android Platform

Processes, Permissions, and Other Safeguards

Samenvatting

Specificaties

Over Jeff Six

Andere boeken door Jeff Six

Inhoudsopgave

Anderen die dit boek kochten, kochten ook

Net verschenen

Rubrieken

Populaire producten

Personen

Trefwoorden