Skip to content

Details

TOPIC: The End of Mobile Security Complacency: DMA, Antitrust, and the Rise of Real API Protection
Join us for great networking, dinner and drinks, and see a presentation by Ted Miracco, CEO, Approov

ABSTRACT:
The security landscape for mobile applications is being redrawn. The EU’s Digital Markets Act (DMA) and landmark legal decisions against Apple’s app store practices are ushering in a new era of mobile security transparency and accountability. At the same time, reports like Dark Reading’s “Mobile Applications Are a Cesspool of Security Issues” expose the urgent need for serious mobile app and API protection strategies.
This talk uncovers the hidden risks of platform monocultures and challenges Apple and Google’s claim that built-in security is sufficient. It offers a practical roadmap for implementing app attestation, runtime protection, and secure API communication to counteract threats such as API scraping, bot automation, credential abuse, and tampered client applications.
We'll dissect recent changes in regulation and litigation and explain why OWASP professionals must lead the charge in adopting more resilient, open, and developer-driven mobile security practices.
Learning Objectives:

  • Understand the regulatory and legal catalysts reshaping mobile app security.
  • Learn how API attacks exploit mobile app weaknesses, despite “built-in” platform defenses.
  • Evaluate tools and frameworks, including app attestation and RASP, that enable secure API communication.
  • Gain insights into how to implement dynamic secrets, certificate pinning, and secure client validation.
  • Explore why monopolistic behaviors hinder innovation and what OWASP chapters can do about it.

Thanks to our SPONSOR: Approov
Regain Control of Your Mobile App Security.
Approov is a team of passionate developers dedicated to making the future of mobile secure. With focus on developing the world’s most complete end-to-end solution for mobile app security from the device into the cloud, our solutions are used worldwide to secure mobile apps and their APIs in everything from automotive, financial services, healthcare to e-commerce, gaming and media.

Thanks to our HOST: Accenture
Every day, we embrace change and create value for all our stakeholders around the world.

*Vendors interested in sponsoring please send an email to sponsorship.la@owasp.org*

CODE OF CONDUCT
We hope you enjoy the event, we care deeply about inclusivity and diversity so that OWASP is a comfortable and welcoming community for everyone. Please reach out to one of our chapter leaders if you have any feedback/concerns or would like to speak to us, we take these matters very seriously. You can find out more about our policies here:
https://owasp.org/www-policy/operational/conferences-events.html#conference-and-event-anti-harassment-policy

Events in Playa Vista, CA
Computer Security
OWASP
Web Security
Ethical Hacking
Software Development

Sponsors

Sponsor logo
OWASP - LA
sponsorship.la@owasp.org
Sponsor logo
Wallarn
API Security and AI agents
Sponsor logo
Contrast Security
Application Detection and Response for Modern Enterprises
Sponsor logo
Kodem
Helping AppSec Teams Make Security a Priority
Sponsor logo
Arnica
AppSec made simple pipelineless detection and secret mitigation.
Sponsor logo
Endor Labs
Secure open source software without the dev productivity tax
Sponsor logo
DefectDojo
DefectDojo is the platform and product that enables scalable security
Sponsor logo
Cato Networks
One platform to connect all edges, everywhere
Sponsor logo
Checkmax
Securing the Applications Driving Our World
Sponsor logo
Mend io
equips your dev and security teams with tools to build a mature AppSec

Members are also interested in