A collaborative list of learning materials about a security in the iOS apps
The main goal of this repo is to help people learn how to make their iOS apps more secure. Security is not a topic that all iOS developers touch on a daily basis. To some of us it seems quite hard to start learning about it so I thought it would be great to create a collaborative space with all the useful links to the articles, videos, books and other useful resources 🙃
As we all know, IT world is changing rapidly and information gets outdated quite quickly so next to the each resource you will find a date when it was published. You can decide on your own if that information is recent enough. Materials are sorted in each category, starting from the most recent ones.
Please feel free to submit your Pull Requests, suggest new links that you find useful and helpful.
- iOS and iPadOS app security overview - https://support.apple.com/en-gb/guide/security/secf49cad4db/1/web/1
- iOS App Security: 6 Ways How Apple Protects the User’s Data, 28th January 2021 - https://www.appknox.com/blog/ios-app-security-6-ways-how-apple-protects-the-users-data
- Workshop: Secure Software Development: From Rookie to Hardcore in 90 Minutes, 21st March 2019 - https://speakerdeck.com/vixentael/workshop-secure-software-development-from-rookie-to-hardcore-in-90-minutes
- iOS App Security Tips and Tricks, 12th October 2018 - https://medium.com/@ankurvekariya/ios-app-security-tips-and-tricks-42cdf9301181
- Here's How iOS Jailbreak Really Works, 24th June 2018 - https://www.appknox.com/blog/how-does-jailbreak-work
- How To Secure iOS User Data: The Keychain and Biometrics — Face ID or Touch ID, 15th January 2018 - https://www.raywenderlich.com/236-how-to-secure-ios-user-data-the-keychain-and-biometrics-face-id-or-touch-id
- Users' data security in iOS applications, 6th July 2015 - https://speakerdeck.com/vixentael/users-data-security-in-ios-applications
- OWASP Mobile Security Testing Guide - https://owasp.org/www-project-mobile-security-testing-guide/
- Secure your app: threat modeling and anti-patterns - https://developer.apple.com/videos/play/wwdc2020/10189/
- One-tap account security upgrades - https://developer.apple.com/videos/play/wwdc2020/10666/
- Cryptography and Your Apps - https://developer.apple.com/videos/play/wwdc2019/709/
- Data You Can Trust - https://developer.apple.com/videos/play/wwdc2018/222/
- AVContentKeySession Best Practices - https://developer.apple.com/videos/play/wwdc2018/507/
- Automatic Strong Passwords and Security Code AutoFill - https://developer.apple.com/videos/play/wwdc2018/204/
- Strategies for Securing Web Content - https://developer.apple.com/videos/play/wwdc2018/207/
- Your Apps and Evolving Network Security Standards - https://developer.apple.com/videos/play/wwdc2017/701/
- What's New in Security - https://developer.apple.com/videos/play/wwdc2016/706/
- How iOS Security Really Works - https://developer.apple.com/videos/play/wwdc2016/705/
- Security and Your Apps - https://developer.apple.com/videos/play/wwdc2015/706/
- Building Secure iOS Apps (you don’t have to learn it the hard way!), 30th January 2020 - https://www.youtube.com/watch?v=b6LI6j_aJ9k
- Building user-centric security model in iOS applications, 9th December 2016 - https://www.youtube.com/watch?v=QG-yw5iG564
- Pro iOS Security and Forensics: Enterprise iPhone and iPad Safety by Eric Butow, 31st July 2018
- iOS Application Security: The Definitive Guide for Hackers and Developers by David Thiel, 16th February 2016
- Learning iOS Security by Allister Banks, 27th February 2015
- iOS Hacker's Handbook by Charlie Miller, 20th April 2012
- Hacking and Securing iOS Applications: Stealing Data, Hijacking Software, and How to Prevent It by Jonathan Zdziarski, 28th January 2012