 
  goobar
goobar
Mobile App Security - Tips For Securing Your Mobile Projects
This week, I want to talk about app security; specifically mobile app security; and being really, really specific Android app security; though the concepts will apply equally as well to iOS applications.
App security is something that is vitally important to business and individuals that are possibly working with customer data, working with 3rd party services, or even working with your own services.
Now while these security issues are serious, there also seems to be a rather glaring lack of security-focused information and discussion out there.
So in this episode, I want to chat through a high-level overview of Android app security and some action items to help improve your project's security today.
We'll talk about ways to improve your app; your source code; and your infrastructure.
Chapters
0:00 Teaser
0:43 Overview
3:41 Intro
4:02 Why Is App Security Important?
5:38 How Can We Minimize Security Risks?
8:26 Minimizing Risk From Our App
8:59 Obfuscating Our Code
14:11 Securing API Keys
19:24 Protecting Network Traffic
24:45 Protecting User Data
28:01 Securing Your Developer Identity
35:00 Securing Your Source Code
38:25 Protecting Your Development Machine
40:28 Securing Your CI Infrastructure
42:41 In Summary
Resources
- https://en.wikipedia.org/wiki/Obfuscation_(software)
- https://developer.android.com/studio/build/shrink-code#obfuscate
- https://r8.googlesource.com/r8
- https://developer.android.com/training/articles/security-config
- https://developer.android.com/studio/publish/app-signing#secure_key
- https://docs.github.com/en/actions/reference/encrypted-secrets
Contact
https://twitter.com/n8ebel
https://goobar.dev/contact/
Thanks for listening devs! 👋
Let's Connect
--
🔔 Find More Developer Content On YouTube
https://www.youtube.com/c/goobario?sub_confirmation=1
🙂 Find Me Online
website ➡ https://goobar.dev
links ➡ https://goobar.dev/links