Recorded 25 April 2012 at the Roots conference in Bergen, Norway.
Abstract (NB: slides in enlish, spoken in norwegian):
In December 2011, around 10 billion Android apps had been downloaded and as of January 2012, there are over 400,000 apps available in Android Market. Unfortunately, the skills and knowledge of many developers does not match their ambitions and as such leave their apps riddled with bugs and security holes.
Reports indicate as much as 40% of apps use hard-coded cryptographic keys! Some of the most common weaknesses are sensitive data leakage, unsafe sensitive data storage and transmission and hardcoded passwords/keys.
This talk aims at giving anyone interested in app development a quick overview of some of the (security) mistakes developers do today and how to avoid them.