security / crypto – Arvi Fox

Posted on October 5, 2020October 5, 2020 by arvifox — Leave a comment

Android Partner Vulnerability Initiative (APVI)

Announcing the launch of the Android Partner Vulnerability Initiative
[https://android-developers.googleblog.com/2020/10/announcing-launch-of-android-partner.html]

Posted on December 8, 2019August 25, 2020 by arvifox — Leave a comment

QA, testing, debugging, devops in mobile development

OWASP Mobile Security Testing Guide [https://github.com/OWASP/owasp-mstg/blob/master/README.md]

Continue reading QA, testing, debugging, devops in mobile development

Posted on September 28, 2019November 14, 2020 by arvifox — Leave a comment

Android – keep secrets right

research of android security [https://tproger.ru/digest/android-security-resources/]

SSL pinning защита мобильного банкинга на android с помощью ssl сертификата [https://www.emaro-ssl.ru/blog/ssl-pinning-for-android/] [pdf]

Безопасность со вкусом Google [https://habr.com/ru/company/redmadrobot/blog/452252/]

Android AES crypto encryption [https://habrahabr.ru/company/rambler-co/blog/279835/] AES/CBC/PKCS5Padding [pdf]

Tampering detection Android [https://www.airpair.com/android/posts/adding-tampering-detection-to-your-android-app]
Continue reading Android – keep secrets right

Posted on March 29, 2018August 6, 2018 by arvifox — Leave a comment

Mosdroid #6

https://habrahabr.ru/company/avito/blog/351618/

Spock and Android (pdf)

Continue reading Mosdroid #6

Posted on January 19, 2018August 6, 2020 by arvifox — Leave a comment

API, tokens, auth, oauth

Tokens used by Auth0 [https://auth0.com/docs/tokens]

OAuth [https://en.wikipedia.org/wiki/OAuth]

[https://habr.com/company/mailru/blog/115163/]
Continue reading API, tokens, auth, oauth