Starting at 6:30pm, we'll have free food sponsored by Arbormoon Software, Inc.
Out main meeting will start at 7pm, and feature at talk on Protecting your Android Souce by Godfrey Nolan.
Due to the design of the Java Virtual Machine or JVM it is relatively trivial to reverse engineer Java code from Java jar and class files. While this hasn't been an issue in the past since most Java files are hidden on the server, it is an issue on Android phones where the client side Android apk files are easily obtained and just as easy to decompile back into source.
In this talk Godfrey Nolan, author of Decompiling Java, and the soon to be published Decompiling Android will explain how and why this is possible by unraveling the apk into classes.dex files using the tools that are currently available to decompile your apk's back into Java or HTML5/CSS source code with the right click of a mouse. We'll show some of the security issues that this raises, such as inadvertently allowing people gain access to credit card information or backend systems, when someone has complete access to your source. We'll also look at open source and commercial obfuscation tools and other techniques you should be using, such as C++ coding using the NDK, to stop people gaining access to your Android code.
Godfrey Nolan is founder and president of RIIS a mobile development firm in the Detroit Metro area. He is also author of Decompiling Java (Apress) and the soon to be published Decompiling Android. Godfrey has spoken as AnDevCon, JavaOne, ASP-Connections, VSLive, Codemash, Code PaLOUsa, 1DevDay and many local Java and .Net user groups on a wide range of topics such as Continuous Integration, Executable Requirements and mobile security.