O'Reilly logo

Android Application Security Essentials by Pragati Ogal Rai

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

SSL/TLS

I was reading a very interesting research conducted by the students of the Leibniz University of Hannover and the Philipps University of Marburg, Germany, about MITM (man-in-the-middle) attacks on data in transit. The applications studied were using SSL (Secure Socket Layer) or TLS (Transport Layer Security) protocols to protect data over the network. Many of the applications were not using SSL/TLS properly, which resulted in vulnerability. Another interesting observation is that since the Android browser does not show the green padlock usually associated with the sites using SSL/TLS, users were not aware of the fact that they were using an insecure website. Check out the paper at http://www2.dcsec.uni-hannover.de/files/android/p50-fahl.pdf ...

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required