IS YOUR MOBILE APP LEAKING SECRETS?

Tue 30 October 2018 By Paulo Silva

Category: API Keys

In Why Exposed API Keys and Sensitive Data are Growing Cause for Concern, Janet Wagner points out that the exposure of sensitive data through code is a growing cause of concern as developers rely...

Read More

A TOUR OF API UNDERPROTECTION

Tue 03 April 2018 By Skip Hovsmith

Category: API Keys, Integration, TLS

AN OWASP APPSEC CALIFORNIA 2018 TALK

The fifth annual OWASP AppSec California was held in late January 2018 on the beach in Santa Monica. AppSec California is organized and run by an all-volunteer...

Read More

A BRIEF INTRODUCTION TO APPROOV

Fri 19 January 2018 By Jae Hossell

Category: Mobile App Authentication, Scrapers, API Keys, Repackaged Apps

An article on wired summarises 25 data breaches that made headlines during 2017. The implication in the article, and the general impression of those who take an interest, is that 2018 will bring...

Read More

WHITELISTS AND INDIRECTION GO TOGETHER LIKE CHOCOLATE AND PEANUT BUTTER

Fri 28 July 2017 By Skip Hovsmith

Category: API Keys, Mobile App Authentication, Reverse Engineering, Third Party APIs

source: nourishmorelove

Read More

HELP YOUR MOBILE API ECOSYSTEM TO FLOURISH

Wed 05 July 2017 By Barry O'Rourke

Category: Mobile App Authentication, Third Party APIs, API Keys, Integration

(Image via http://maxpixel.freegreatpicture.com)

Read More

HOW PYTHON CODERS TRIED TO KILL MY SUPPOSEDLY SECURE JAVASCRIPT API SERVICE

Thu 15 June 2017 By Skip Hovsmith

Category: Mobile App Authentication, API Keys

ONE DEVELOPER’S BAD DREAM

Read More

HANDS ON MOBILE API SECURITY: PINNING CLIENT CONNECTIONS

Wed 31 May 2017 By Skip Hovsmith

Category: API Keys, Integration, TLS

ADD TLS AND CERTIFICATE PINNING WHILE REMOVING CLIENT SECRETS

Read More

HANDS ON MOBILE API SECURITY - USING A PROXY TO PROTECT API KEYS

Thu 11 May 2017 By Skip Hovsmith

Category: API Keys, Integration, TLS

(UGC 12591: The Fastest Rotating Galaxy Known. Image Credit:NASA,ESA, Hubble)

Read More

MOBILE API SECURITY TECHNIQUES PART 3

Tue 07 March 2017 By Skip Hovsmith

Category: API Keys, A Series - Mobile API Security

Mobile apps commonly use APIs to interact with backend services and information. In 2016, time spent in mobile apps grew an impressive 69% year to year, reinforcing most companies' mobile-first...

Read More

MOBILE API SECURITY TECHNIQUES PART 2

Tue 21 February 2017 By Skip Hovsmith

Category: API Keys, A Series - Mobile API Security

Mobile apps commonly use APIs to interact with backend services and information. In 2016, time spent in mobile apps grew an impressive 69% year to year, reinforcing most companies' mobile-first...

Read More

Page 1 of 2