That’s a big, scary word when it comes to mobile application developers, especially in the enterprise but it doesn’t have to be if you plan ahead of time and address potential threats before you lay down your code.
This is what Dan Cornell, CTO at the Denim Group, calls the “Smartphones, dumb apps” syndrome.
While security at the application level isn’t, well, um, sexy to talk about for all of us, it is an issue that could have huge ramifications if not addressed while developing a mobile application and Dan is the right guy to talk about this.
I vote Dan for Mobile Security Evangelist and you will too after giving this a watch.
Embed the video on your site:
Listen to the audio version now:
About Dan Cornell
Dan Cornell has over twelve years of experience architecting, developing and securing web-based software systems. As a Principal of Denim Group, he leads the organization’s technology team overseeing methodology development and project execution for Denim Group’s customers. He also heads the Denim Group application security research team, investigating the application of secure coding and development techniques to the improvement of web based software development methodologies.
In addition, Dan Cornell performed as the CTO of BrandDefense, architecting and developing their cutting-edge intellectual property protection technologies. Over a one year period of development he brought their web-based intellectual property protection technologies through three major versions, surpassing the applications of well funded and entrenched competitors.
Previously he was the Vice President, Global Competency Leader for Rare Medium’s Java and Unix competency center, based in San Antonio, Texas with development centers in New York, San Francisco, Atlanta and Sydney, Australia. He directed the development of best practices and policy for the cornerstone of Rare Medium’s technical development arm, specializing in server-side Java application development.
Prior to its acquisition by Rare Medium, Cornell was a founder and Vice President of Engineering for Atension, Inc. where he led the technical development team and served as the architect for the company’s internal engineering practices. In March 1999, Texas Monthly magazine named Cornell and his partners, Sheridan Chambers and Tyson Weihs, to its list of 30 “Multimedia Whizzes Under Thirty” doing business in Texas.
Prior to his work with Atension, Cornell developed simulation applications for the Air Force with Southwest Research Institute.
He has published papers on topics ranging from data security to high-end graphical simulations, as well as an IBM Redbook on building server-side Java applications for the Linux platform. He has been published by the Association of Computing Machinery, and the Society of Computing Simulation International. He is a sought-after speaker on topics of web application security and building solutions with Microsoft .NET and J2EE technologies and has spoken at such international conferences as ROOTS in Norway and OWASP EU Summit in Portugal.
Dan was the founding coordinator and chairman for the Java Users Group of San Antonio (JUGSA) and is currently the San Antonio Open Web Application Security Project (OWASP) chapter leader, a member of the OWASP Global Membership Committee and a co-lead of the OWASP Open Review Project. Dan also serves on the advisory board of Trinity University’s Department of Computer Science. He is a recognized expert in the area of web application security for SearchSoftwareQuality.com and the primary author of Sprajax, Denim Group’s open source tool for assessing the security of AJAX-enabled web applications.
Dan holds a Bachelor of Science degree with Honors in Computer Science, and graduated Magna Cum Laude from Trinity University.