ZARZA We are Zarza, the prestigious firm behind major projects in information technology.
Listen "Security for developers"
Episode Synopsis
In our fifth episode we talk on Application Security and, of course, about privacy.
What are our expectations of WWDC21? What iOS 14.5 brings to users and developers? Apple rejects apps using privacy-unfriendly SDKs, China apps use their own fingerprinting approachs.
Of course, we couldn't avoid discussing Facebook and leak of 526M accounts. We also talk on new threats for developers and basic things to start with, if you're interested in increasing app's security.
Further reading and watching:
Apple Platform Security: https://support.apple.com/guide/security/welcome/web
OWASP Mobile Security Testing Guide: https://github.com/OWASP/owasp-mstg
OWASP Mobile Application Security Verification Standard: https://github.com/OWASP/owasp-masvs
Workbook for "Security data management for app devs": https://github.com/vixentael/security-data-management-for-app-devs-workshop
Mobile Notts 2021 talk: End-to-end encrypted doesn't mean secure: https://www.youtube.com/watch?v=CqsrA4eeGSs&list=PLWpf2Cn-bt0-6pjQ3SJf3tjIza_rPaJAf&index=13
Our guest:
- Anastasiia Voitova, Head of Customer Solutions, Security Software engineer at Cossack Labs, https://twitter.com/vixentael
What are our expectations of WWDC21? What iOS 14.5 brings to users and developers? Apple rejects apps using privacy-unfriendly SDKs, China apps use their own fingerprinting approachs.
Of course, we couldn't avoid discussing Facebook and leak of 526M accounts. We also talk on new threats for developers and basic things to start with, if you're interested in increasing app's security.
Further reading and watching:
Apple Platform Security: https://support.apple.com/guide/security/welcome/web
OWASP Mobile Security Testing Guide: https://github.com/OWASP/owasp-mstg
OWASP Mobile Application Security Verification Standard: https://github.com/OWASP/owasp-masvs
Workbook for "Security data management for app devs": https://github.com/vixentael/security-data-management-for-app-devs-workshop
Mobile Notts 2021 talk: End-to-end encrypted doesn't mean secure: https://www.youtube.com/watch?v=CqsrA4eeGSs&list=PLWpf2Cn-bt0-6pjQ3SJf3tjIza_rPaJAf&index=13
Our guest:
- Anastasiia Voitova, Head of Customer Solutions, Security Software engineer at Cossack Labs, https://twitter.com/vixentael
More episodes of the podcast Mobile People Talks
In-person episode
11/09/2025
iOS in the car
15/07/2025
Monthly Update – February 2025
21/02/2025
2024 in review
11/12/2024
WWDC24
13/06/2024
Visions of the future
14/03/2024
Acedemical Studies
15/02/2024
2023 in review
28/12/2023
Wonders of the fall
14/09/2023
Spatial computing!
14/06/2023
In God we trust