Overview
Explore React Native security and learn how to address typical mistakes in this 23-minute conference talk by Julia Potapenko. Gain insights into the security aspects of React Native apps, including architecture basics, third-party trust, secure storage implementation, Android permission management, and XSS vulnerabilities. Discover techniques for jailbreak and root detection, and understand the importance of monitoring dependencies. Learn about security testing for React Native applications and receive practical advice on time planning and handling situations where no immediate fix is available. Conclude with final thoughts and recommendations for further learning in mobile app security.
Syllabus
Intro
Architecture basics
Trusting third parties
Secure Store Example
Managing Android Permissions
Is XSS possible?
Jailbreak and Root detection
A typical situation
Monitoring dependencies
What if there is no fix?
Plan time carefully!
How do we test RN app security?
Final thoughts...
Where to go next?
Taught by
OWASP Foundation