Secure & Defensive Programming for Android

Course Description

Android applications are affected by issues inherent to the Android platform and by issues common to other types of mainstream software. Developers must be familiar with both types of risks to design and develop applications resilient to common attacks. Building on the Foundations of Android Security course, this course teaches effective techniques for addressing common risks in Android applications.

Course Themes

  • Recommend methods for secure inter-process and network communications
  • Describe methods for secure use of Android’s permission model
  • Introduce ways to ensure the protection of sensitive data on mobile devices
  • Outline best practices for input validation and output encoding
  • Describe strong access controls mechanisms

Learning Objectives

  • Identify security risks relevant to Android applications
  • Apply defensive programming techniques to mitigate Android specific risks
  • Apply defensive programming techniques to mitigate general software security risks in Android applications

Course Outline

  1. Addressing Android-Specific Risks
  2. Addressing Common Application Security Risks
  3. Device Interrogation

Details

Delivery Format: eLearning

Duration: 1 hour

Level: Intermediate

Intended Audience:

  • Developers
  • QA Engineers
  • Architects
  • Application Security Specialists

Competencies: Familiarity with the Java program language and web technologies

Prerequisites: 

Get more course information