Android Apps Security

  • 3h 3m
  • Sheran Gunasekera
  • Apress
  • 2012

Android Apps Security provides guiding principles for how to best design and develop Android apps with security in mind. It explores concepts that can be used to secure apps and how developers can use and incorporate these security features into their apps.

This book will provide developers with the information they need to design useful, high-performing, and secure apps that expose end-users to as little risk as possible.

  • Overview of Android OS versions, features, architecture and security.
  • Detailed examination of areas where attacks on applications can take place and what controls should be implemented to protect private user data
  • In-depth guide to data encryption, authentication techniques, enterprise security and applied real-world examples of these concepts

What you’ll learn

  • How to identify data that should be secured
  • How to use the Android APIs to ensure confidentiality and integrity of data
  • How to build secure apps for the enterprise
  • About Public Key Infrastructure, encryption APIs and how to implement them in apps
  • About owners, access control lists and permissions to allow user control over App properties
  • About client-server apps and how to manage authentication, transport layer encryption and server-side security

Who this book is for

This book is for intermediate and experienced Android app developers that are already familiar with writing apps from scratch. It discusses mechanisms on how apps can be secured so that private, end-user data is kept secure on the device and while in transit. If you’re just embarking on the path to Android development, then this book may prove to be a useful companion to other developer guides.

About the Author

Sheran Gunasekera is a security researcher and software developer with more than 13 years of information security experience. He is director of research and development for ZenConsult Pte. Ltd., where he oversees security research in both the personal computer and mobile device platforms. Sheran has been very active in BlackBerry and Mobile Java security research and was the author of the whitepaper that revealed the inner workings of the first corporate-sanctioned malware application deployed to its subscribers by the UAE telecommunications operator Etisalat. He has spoken at many security conferences in the Middle East, Europe and Asia Pacific regions and also provides training on malware analysis for mobile devices and secure software development for both Web and mobile devices.

In this Book

  • Android Architecture
  • Information: The Foundation of an App
  • Android Security Architecture
  • Concepts in Action – Part 1
  • Data Storage and Cryptography
  • Talking to Web Apps
  • Security in the Enterprise
  • Concepts in Action: Part 2
  • Publishing and Selling Your Apps
  • Malware and Spyware