all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Hands-on Mobile App and API Security – Runtime Secrets Protection

Add to bookmarks
July 4, 2022, 11:31 a.m. | Paulo Renato

Security Boulevard securityboulevard.com





In a previous article we saw how to protect API keys by using Mobile App Attestation and delegating the API requests to a Proxy. This blog post will cover the situation where you can’t delegate the API requests to the Proxy, but where you want to remove the API keys (secrets) from being hard-coded in your mobile app to mitigate against the use of static binary analysis and/or runtime instrumentation techniques to extract those secrets.


The post Hands-on Mobile App …

api api keys api security api security - analysis app mobile mobile app mobile app authentication mobile security news and insights protection runtime secrets security

Visit resource

More from securityboulevard.com / Security Boulevard

Crunching Some Numbers on PHP Support 3 hours ago | securityboulevard.com
application breaking can continue +16
Google Chrome DBSC Protection Tested Against Cookie Attacks 4 hours ago | securityboulevard.com
attacks authentication browser browser security +31
The Dark Side of EDR: Repurpose EDR as an Offensive Tool 6 hours ago | securityboulevard.com
capabilities code dark edr +13
The Ultimate Guide to SBIR and STTR Program Budgeting 10 hours ago | securityboulevard.com
budgeting budgets can corporations +14
Vulnerabilities for AI and ML Applications are Skyrocketing 14 hours ago | securityboulevard.com
ai ai and ml in security ai development applications +34
Cheap ‘Junk-Gun Ransomware’ Emerging on the Dark Web 14 hours ago | securityboulevard.com
affiliates as-a-service blackcat cl0p +30
What Makes Containers Vulnerable? 16 hours ago | securityboulevard.com
containers guide mend security +5
USENIX Security ’23 – NRDelegationAttack: Complexity DDoS attack on DNS Recursive Resolvers 16 hours ago | securityboulevard.com
access attack authors channel +18
DevOps pioneers navigate organizational transformation 17 hours ago | securityboulevard.com
depth devops devops transformation download +16

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Information Security Engineers

@ D. E. Shaw Research | New York City
View on infosec-jobs.com

Information Systems Security Officer (ISSO), Junior

@ Dark Wolf Solutions | Remote / Dark Wolf Locations
View on infosec-jobs.com

Cloud Security Engineer

@ ManTech | REMT - Remote Worker Location
View on infosec-jobs.com

SAP Security & GRC Consultant

@ NTT DATA | HYDERABAD, TG, IN
View on infosec-jobs.com

Security Engineer 2 - Adversary Simulation Operations

@ Datadog | New York City, USA
View on infosec-jobs.com
View more jobs