CENSUS IT Security Works
  • BLOG
  • ADVISORIES
  • CAREERS
  • COMPANY
  • SERVICES
  • INDUSTRIES
  • NEWS
  • LABS
  • CONTACT
POSTED BY: Ioannis Stais / 28.04.2016

Side Channel Leaks in Mobile Applications — Infocom Mobile World Conference 2016

Hello, my name is Ioannis Stais and I’m a security consultant at CENSUS S.A.. At this year’s Infocom Mobile World Conference I did a short presentation on “Side Channel Leaks in Mobile Applications”.

The issues touched in this presentation were common side channel information leakage issues that arise when apps use standard APIs and features.

The presentation slides are available here.

Share this
  • twitter
  • facebook
  • reddit
  • google+
  • email
  • print+

LATEST ADVISORIES

  • Multiple vulnerabilities in radare2
  • WhatsApp exposure of TLS 1.2 cryptographic material to third party apps
  • Canary Mail and MailCore2 library missing certificate validation check on IMAP STARTTLS
  • Microchip cryptoauthlib atcab_sign_base buffer overflow
  • Microchip cryptoauthlib atcab_genkey_base buffer overflow

JOB OPENINGS

  • Embedded Security Engineer
  • Application Security Engineer
  • Junior IT Security Professional Internship
  • Junior Vulnerability Researcher Internship

IN THE NEWS

  • Mayo Clinic lists CENSUS in recommended External Assessors list (Announcement)
  • Microsoft Turns Off Wi-Fi Sense After Risk Revealed (BANK INFO SECURITY)
  • NBG Business Seeds Partnership (National Bank of Greece, ERT, FORTUNE Greece)
  • Security By Design (NETWEEK, in greek)
  • Wifiphisher: Automating Phishing Attacks Against WiFi Networks (Tripwire)
  • DEFCON 22: Hacking Airports, Airplanes and Airwaves (Tripwire - Internet Archive)
Company News
  • FEINDEF 2021
  • International Cyber Expo 2021
  • OffensiveCon 2020
Advisories
  • Multiple vulnerabilities in radare2
  • WhatsApp exposure of TLS 1.2 cryptographic material to third party apps
  • Canary Mail and MailCore2 library missing certificate validation check on IMAP STARTTLS
Blog
  • Securing the building blocks of embedded software
  • Remote exploitation of a man-in-the-disk vulnerability in WhatsApp (CVE-2021-24027)
  • Using program instrumentation to identify security bugs (Oπe\n conf 2020)
  • Privacy Policy
  • Terms of Use
  • RSS
Copyright © 2008 - 2022 CENSUS S.A. All rights reserved. Powered by d4digital / Designed by B612 Design Office