[Owasp-sanantonio] Mobile app assessment stats talk next Friday

Dan Cornell dan at denimgroup.com
Fri May 22 11:56:53 UTC 2015


I'll be speaking about mobile application security assessment statistics
next Friday (May 29) at the next OWASP San Antonio meeting. Meetup link is

This will be at the Denim Group offices. Hope to see folks there. Bring
friends - FREE LUNCH!

Title: Application Security Assessments By The Numbers: A Whole-Istic View

By analyzing the data from over 60 mobile application security
assessments, we identify the typical types of mobile vulnerabilities, the
system components that contain those vulnerabilities, the components where
given types of vulnerabilities cluster, and how to test for each of these.
Attendees will learn in the session how to identify these vulnerabilities,
how to create and implement an effective mobile security plan, and where
to focus their limited testing resources to minimize mobile application
portfolio risks. This is critical because automated web application
testing tools are able to easily find vulnerabilities while today¹s mobile
security industry does not offer automated testing tools that can
effectively test web services (i.e. the interaction between mobile clients
and back-end services.) As a result, best practices for mobile application
testing must incorporate significant, often laborious, manual testing. At
this point in the presentation, we will use the statistics from the
research to define the appropriate manual testing that needs to be



Dan Cornell | Founder, CTO
1354 N Loop 1604 E, Suite 110
San Antonio, Texas 78232
dan at denimgroup.com
office 210.572.4400
mobile 210.859.0921
www.denimgroup.com <http://www.denimgroup.com/>

Follow me on Twitter: @danielcornell
DENIM GROUP | The Leading Secure Software Development Firm

More information about the Owasp-sanantonio mailing list