Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
Network_Security_in_Android.pdf
Search
Sponsored
·
SiteGround - Reliable hosting with speed, security, and support you can count on.
→
ValentineRutto
November 16, 2019
Programming
77
0
Share
Embed
Copy iframe code
Copy JS code
Copy link
Start on current slide
Network_Security_in_Android.pdf
ValentineRutto
November 16, 2019
More Decks by ValentineRutto
See All by ValentineRutto
Kickstarting your tech career
valentinerutto
1
61
The D in SOLID Principles
valentinerutto
0
240
Consuming Rest Api with retrofit in Android
valentinerutto
0
250
Exposing Network Result Status in MVVM
valentinerutto
0
110
Complex ui animation with Motion layout
valentinerutto
0
120
Tech Opportunities
valentinerutto
1
110
Android paging library
valentinerutto
0
280
Android Room persistence library
valentinerutto
0
180
UI/UX FOR MOBILE
valentinerutto
0
280
Other Decks in Programming
See All in Programming
Language Server 使ってる? 〜VSCode と Zed の場合〜 / Are you using a Language Server? ~For VS Code and Zed~
handlename
0
830
Even G2とAWSで推しのエージェントを召喚しよう!
har1101
1
140
その問い、本当に正しいですか?AI時代のエンジニアに必要な哲学と認知科学 / ai-philosophy-cognitive-science
minodriven
14
6.6k
AI時代のUIはどこへ行く?その2!
yusukebe
22
7.7k
Vue × Nuxt × Oxc どこまで使える?実運用の現在地
andpad
0
350
1B+ /day規模のログを管理する技術
broadleaf
0
120
Javaの型とAI時代に型が大事な理由 / java types and type in AI era
kishida
2
170
AIエージェントで 変わるAndroid開発環境
takahirom
1
310
エンジニア向け会社紹介/Findy Company Profile
findyinc
6
360k
ランチタイムLT会3周年!ランチタイムLT会を3年間続けられたお話
y0hgi
1
130
LLM本来の能力を解き放つサンドボックス技術とAI民主化への適用
yukukotani
3
4.8k
SREは、MCPとSRE Agentをこう使え!
kazumax55
0
130
Featured
See All Featured
SEO in 2025: How to Prepare for the Future of Search
ipullrank
3
3.6k
So, you think you're a good person
axbom
PRO
2
2.1k
Crafting Experiences
bethany
1
200
Heart Work Chapter 1 - Part 1
lfama
PRO
8
36k
Git: the NoSQL Database
bkeepers
PRO
432
67k
It's Worth the Effort
3n
188
29k
BBQ
matthewcrist
89
10k
Building an army of robots
kneath
306
46k
Learning to Love Humans: Emotional Interface Design
aarron
275
41k
VelocityConf: Rendering Performance Case Studies
addyosmani
333
25k
Scaling GitHub
holman
464
140k
職位にかかわらず全員がリーダーシップを発揮するチーム作り / Building a team where everyone can demonstrate leadership regardless of position
madoxten
62
55k
Transcript
Network Security in Android
None
KOKO is mainstreaming liquid bio-ethanol cooking fuel as a fast,
safe and affordable alternative to dirty cooking fuels such as charcoal https://kokonetworks.com
Protecting your app from reverse engineering and man in the
middle attacks
SSL certificate pinning Obfuscation with proguard
SSL Certificate pinning Why SSL Certificate pinning? to prevent man
in the middle attack What is SSL? -Secure Socket Layer - its a protocol that has always been used to encrypt and secure transmitted data between server and client (website and browser).
SSL Certificate pinning What is ssl certificate pinning? is ensuring
that any client SSL request first validates that the server’s certificate exactly matches the bundle’s certificate previously stored in the application.
SSL Certificate pinning
SSL Certificate pinning What steps do we need? • Obtaining
a certificate for the desired host (preferably the whole certificate chain). • Pin the certificate to an instance of DefaultHttpClient
SSL Certificate pinning Get certificate public key from ssllabs This
is the hashed public key of the certificate
SSL Certificate pinning
SSL Certificate pinning
SSL Certificate pinning - Failure
Obfuscation What? -is a process of creating source code in
a form that is hard for human to understand. Why? To prevent reverse engineering To reduce your app size
1. Configure your gradle file (app/gradle) 2. Use default android
proguard rules or create your own 3. Edt your rules Obfuscation Steps
Obfuscated Code
Non-obfuscated code
Resources Proguard android ssl pinning practical proguard rules
Demo….!!!!!! Demo github link
Thank you !!