Update MSTG with changes in iOS 11

Track: Mobile Security
When: Wed PM-2
Organizers Sven Schleier
Participants Carlos Holguera , Arne Zismer

The Mobile Security Testing Guide (MSTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes technical processes for verifying the controls listed in the OWASP Mobile Application Verification Standard (MASVS).

Why

With every (major) release of iOS security controls are added/changed or may become obsolete. This session is to identify these changes in iOS 11 and to update the MSTG along the way.

Outcomes

An updated iOS chapter in the MSTG that covers the latest changes of security controls in iOS 11. The MSTG is hosted in Github and can easily be edited by anyone, just a Github account is needed and knowledge on how to create a pull request.

Who

The target audience for this Working Session is:

  • iOS Developers
  • Penetration Testers

Everyone else who is interested in mobile security and some technical know-how :-)

References

iOS 11 Security Whitepaper

Register as participant

To register as participant add Update MSTG with changes in iOS 11 to either:

  1. the sessions metadata field from your participant's page (find your participant page and look for the edit link).
  2. or the participants metadata field from this git session page


Back to list of all Working Sessions