Download slides

As you probably know, iOS apps are isolated from each other via the Apple sandbox ("Seatbelt"). However, that doesn't mean developers shouldn't pay attention to their users safety.
In this talk we will briefly cover all layers of iOS security architecture, delve into secrets of Secure Enclave and discuss the most common mistakes and vulnerabilities to prevent them from happening in the future, as well as have a sneak peek into penetration testing done right.
I will share a few examples of security flaws I found during the last few years and show how to use various tools to spot and fix them.