Secure Coding for Android Platform Training
This 3-day Intense Secure Coding for Android Platform Training Course provides an in-depth review of Android security technology and services and common vulnerabilities related to Android native code and Java. Hands-on exercises offer a practical way of analyzing vulnerabilities attack, and mitigation techniques.
Secure Coding for Android Platform Training Course gives a comprehensive overview of these features putting an equal emphasis on both native code issues and Java security, allowing a deeper analysis of the vulnerabilities, attacks, protection techniques and counter attacks in three days.
Duration: 3 days
RESOURCES
- Secure Coding for Android Platform Training – https://www.wiley.com/
- Secure Coding for Android Platform Training – https://www.packtpub.com/
- Secure Coding for Android Platform – https://store.logicaloperations.com/
- Secure Coding for Android Platform – https://us.artechhouse.com/
- Secure Coding for Android Platform Training – https://www.amazon.com/
RELATED COURSES
- Secure Coding in PHP Training
- Secure Coding in C/C++ Training
- Secure Coding in .NET Training
- Secure Coding for iOS Platform Training
- Secure Coding in Java/JEE: Developing Defensible Applications Training
- Secure Coding in .NET: Developing Defensible Applications Training
- Defending Web Applications Security Essentials Training
CUSTOMIZE It
- We can adapt this Secure Coding for Android Platform course to your group’s background and work requirements at little to no added cost.
- If you are familiar with some aspects of this Secure Coding for Android Platform course, we can omit or shorten their discussion.
- We can adjust the emphasis placed on the various topics or build the Secure Coding for Android Platform Course around the mix of technologies of interest to you (including technologies other than those included in this outline).
- If your background is nontechnical, we can exclude the more technical topics, include the topics that may be of special interest to you (e.g., as a manager or policy-maker), and present the Secure Coding for Android Platform course in manner understandable to lay audiences.
AUDIENCE/TARGET GROUP
The target audience for this Secure Coding for Android Platform course:
- Web developers, architects, and testers
CLASS PREREQUISITES
The knowledge and skills that a learner must have before attending this Secure Coding for Android Platform course are:
- N/A
Secure Coding for Android Platform Training - OBJECTIVES
Upon completing this Secure Coding for Android Platform course, learners will be able to meet these objectives:
- Understand basic concepts of security, IT security and secure coding
- Learn the security solutions on Android
- Learn to use various security features of the Android platform
- Get information about some recent vulnerabilities in Java on Android
- Get understanding on native code vulnerabilities on Android
- Learn about typical coding mistakes and how to avoid them
- Get practical knowledge in using security testing tools
- Get sources and further reading on secure coding practices
Secure Coding for Android Platform Training - COURSE SYLLABUS
IT security and secure coding
- Nature of security
- IT security related terms
- Definition of risk
- IT security vs. secure coding
- From vulnerabilities to botnets and cybercrime
- Classification of security flaws
Android Security Overview
- Android fragmentation challenges
- The Android software stack
- OS security features and exploit mitigation techniques
- The Linux kernel
- Filesystem security
- Dalvik
- Deploying applications
Application Security
- Permissions
- Writing secure Android applications
- Protecting applications
- Digital Rights Management (DRM)
- Reverse engineering and debugging
Basics of Cryptography
- Cryptosystems
- Symmetric-key cryptography
- Other cryptographic algorithms
- Asymmetric (public-key) cryptography
- Public Key Infrastructure (PKI)
- Cryptography on Android
Android Native Code Security
- Buffer overflow possibilities in Android
- ARM architecture
- Buffer overflow on the stack
- Protection techniques – ASLR, XN, RELRO, …
Android and Java vulnerabilities
- Input validation
- SQL Injection
- Cross-Site Scripting (XSS)
- Improper use of security features
- Improper error and exception handling
- Code quality problems
Testing Android Code
- Testing Android code
- Android Lint o Android Lint – Security features
- Lint exercise
- PMD
- PMD exercise
- FindBugs
- FindBugs exercise
Advice and Principles
- Matt Bishop’s principles of robust programming
- The security principles of Saltzer and Schroeder
Knowledge Sources
- Secure coding sources – a starter kit
- Vulnerability databases
Secure Coding for Android Platform Training Course Wrap-Up
Whether you are looking for general information or have a specific question, we want to help.
Request More Information