Memory, Encryption, and Protecting Data in Android

本课程是 Writing Secure Code for Android 专项课程的一部分

位教师：Chrystine D Thorsen

访问权限由 New York State Department of Labor 提供

3个模块

深入了解一个主题并学习基础知识。

1 周完成

在 10 小时一周

灵活的计划

自行安排学习进度

3个模块

深入了解一个主题并学习基础知识。

1 周完成

在 10 小时一周

灵活的计划

自行安排学习进度

您将获得的技能

要了解的详细信息

可分享的证书

添加到您的领英档案

作业

3 项作业

授课语言：英语（English）

了解顶级公司的员工如何掌握热门技能

了解关于 Coursera for Business 的更多信息

Petrobras, TATA, Danone, Capgemini, P&G 和 L'Oreal 的徽标

积累特定领域的专业知识

本课程是 Writing Secure Code for Android 专项课程专项课程的一部分

在注册此课程时，您还会同时注册此专项课程。

向行业专家学习新概念
获得对主题或工具的基础理解
通过实践项目培养工作相关技能
获得可共享的职业证书

该课程共有3个模块

This course is designed for intermediate-level learners who want to enhance their security skills in Android development. Participants will analyze the structure of Android memory and evaluate its defenses against exploitation, including understanding pointers and their role in buffer overflow exploits. The course covers various types of overflows, mitigation techniques, and specific vulnerabilities such as the Stagefright buffer overflow.

In addition to exploitation techniques, learners will explore secure data storage practices within the Android file system, implement cryptography concepts, and securely manage credentials using the Android Keystore. The course also addresses password security through hashing and salting techniques, common data risks, and secure storage practices to protect data at rest. Finally, participants will gain insights into network security, data protection in transit, and securing inter-process communications and webviews in Android applications.

In this module, you'll dive into the intricacies of Android memory management. We'll explore how memory is structured and used in Android apps, and you'll learn to identify and mitigate common vulnerabilities like overflows. By the end, you'll have hands-on experience with the notorious Stagefright buffer overflow vulnerability, equipping you with practical skills to protect your apps.

涵盖的内容

4个视频1个作业

This module will guide you through the essentials of encryption in Android development. You'll learn how to protect user data at every stage—whether it's at rest, in transit, or in use. We'll cover common pitfalls in handling user credentials and how to avoid them, ensuring your app's data remains secure. By the end, you'll be adept at using Android Keystore for secure credential storage.

涵盖的内容

15个视频1个作业

15个视频总计149分钟

Android storage overview 9分钟
Protecting secrets 13分钟
Activity: Insecurely saving a username and password 10分钟
Encryption overview 12分钟
Understanding PKI 10分钟
Android encryption overview 14分钟
Activity: Encrypting data, part 1 14分钟
Activity: Encrypting data, part 2 11分钟
Activity: Encrypting data, part 3 13分钟
Hashing 8分钟
Activity: Hashing a password 9分钟
Activity: Generating random values 4分钟
Activity: Salting a hashed password 3分钟
Android Keystore 6分钟
Activity: Storing secrets in Android Keystore 12分钟

1个作业总计30分钟

Encryption quiz 30分钟

In this module, you'll explore various strategies to protect data beyond encryption. We'll discuss common data risks and how to secure data during transmission and storage. You'll also learn to mitigate data leakage risks and secure inter-process communications within Android apps. By the end, you'll have a comprehensive understanding of how to protect data viewed online by users.