Overview
Explore the latest security features and best practices for Android app development in this Google I/O'19 conference talk. Discover new APIs and techniques to enhance app integrity and data privacy, covering topics such as privacy updates, updateability, hardening, encryption, and the Jetpack Security Library. Learn about network encryption, application key assignment, app signing by Google Play, key upgrades, and rotation. Dive into user authentication methods, including biometric prompts, implicit confirmation flows, and FIDO2 certification. Gain insights on second-factor authentication, physical ID credentials, and the Jetpack Compatibility Library. Understand the importance of transparency across multiple layers, dynamic code, and knowledge factors in Android security.
Syllabus
Intro
Privacy
Updateability
Hardening
Encryption
Adiantum
Android Cue
Jetpack Security Library
Network Encryption
Application Assigning Keys
App Signing by Google Play
Key Upgrade
Key Rotation
Before Enabling Key Rotation
User Authentication
Biometric Prompt
Implicit Confirmation Flow
Fido 2 certified
Second factor authentication
Physical ID
Credentials
Jetpack Compatibility Library
Transparency on multiple layers
Dynamic Code
Knowledge Factor
Transparency
Thanks
Taught by
Android Developers