Why Secure Mobile Application Development?
In an attempt to keep up with technological advancements and ever increasing business demands, mobile applications are produced very quickly. Security considerations take a back seat as it is sometimes considered to make applications less user friendly. The convenience of data access is so important in mobile applications that a concept such as asking for frequent password entries is not even entertained. Designing security in mobile applications is given a low priority as it is likely to lengthen initial project time and cost estimates. So, mobile applications become an easy target for attackers.

Moreover, the security risks and considerations are unique to mobile application development because of the nature of mobile users and mobile hardware. The small screen of mobile devices poses challenges in determining the right balance between the amount of information displayed and the ease of accessing data. Also, the lower processing power of mobile devices can restrict application designs to maximize device speed while maintaining efficient power usage. No employee would want their mobile device to be the point of entry for unwanted and probably malicious code entering the corporate network.

The cost of fixing software defects rises exponentially as the development lifecycle progresses. So, understanding the threats and potential vulnerabilities early in the design stage itself and picking appropriate design choices and coding practices to mitigate or avoid potential risks in the future becomes critical.

What is Secure Mobile Application Development Training?
Today’s mobile application development environment faces the increased need to comply with multiple regulations, protect data privacy, and safeguard sensitive information while maintaining operational integrity. Software that has not been developed using secure programming methods can jeopardize the project by increasing development costs due to rework and/or re-engineering to retrofit security aspects, thereby affecting time-to-market adversely.

Aujas’ Secure Mobile Application Development Training programs are designed to guide and train the developers to practice secure programming during mobile application development life cycle.

How is Secure Mobile Application Development Training Delivered?
This two day Secure Mobile Application Development Training program allows participants to opt for in-person training at customer locations globally or virtual training through the Aujas Virtual Lab.

The Aujas Virtual Lab is very powerful and robust, yet extremely easy to use. It provides participants with the necessary practical training without leaving their location. The Aujas Virtual Lab is equipped with Android and IOS devices’ latest platform, development environment simulators and SDKs which help participants to learn and demonstrate secure coding skills. The lab enables the participants to build sample secure mobile applications through well written sample secure code snippets, secure code guides and hands-on application sessions.

Who needs it?
This course is designed for mobile application developers, system architects, security architects and mobility experts.

Course Objective

	To transform your Software Development Lifecycle to a Secure Development Life Cycle
	To incorporate security controls in each phase of the development life cycle
	To improve software quality and efficiency
	To standardize the development processes
	To mitigate risks around access, accuracy, availability and agility

Participants will learn about secure coding practices and how to securely release mobile applications using Android and IOS platforms in this hands-on training. Learn to avoid spending huge amounts on compliance, re-engineering and risk mitigation by writing code once and writing it right.

Participant Requirements

	Experienced Objective C professionals
	Latest iOS SDK installed and configured on laptop

Course Highlights

Aujas virtual lab will help equip participants with advanced secure coding practices using Android and IOS. It will provide

	Detailed discussion on Android and IOS Security Framework
	Detailed secure code practices guidelines for Android Platform
	Detailed Secure code practices guidelines for IOS Platform
	Code snippets of best coding practices examples using Android and IOS SDK

 

Course Duration: 2 Business Days

Course Content -

	Introduction to Android Security Framework
	Handling User IDs and Files Access & Permissions
	Handling Secure Permissions for Manifest files
	Handling intents
	Handling activities securely
	Handling Permissions for Broadcasts
	Handling URI Permissions
	Handling content providers
	Securing Services
	Handling OPEN APIs and Libraries
	Securing binder interfaces
	Securing data storage
	Securing and Monitoring Applications logs
	Secure release of Mobile Applications

Prerequisites:

	In depth C, Java or C++ experience is a must
	Background in computer programming on Linux platforms is an advantage
	Latest Android developer SDK installed and configured on laptop