OWASP LA Monthly In-Person Meeting - Jun 25, 2025

TOPIC: The Digital Markets Act and Its Impact on Mobile App & API Security
Join us for great networking, dinner and drinks, and see a presentation by Ted Miracco, CEO, Approov

ABSTRACT:
The security landscape for mobile applications is being redrawn. The EU’s Digital Markets Act (DMA) and landmark legal decisions against Apple’s app store practices are ushering in a new era of mobile security transparency and accountability. At the same time, reports like Dark Reading’s “Mobile Applications Are a Cesspool of Security Issues” expose the urgent need for serious mobile app and API protection strategies.
This talk uncovers the hidden risks of platform monocultures and challenges Apple and Google’s claim that built-in security is sufficient. It offers a practical roadmap for implementing app attestation, runtime protection, and secure API communication to counteract threats such as API scraping, bot automation, credential abuse, and tampered client applications.
We'll dissect recent changes in regulation and litigation and explain why OWASP professionals must lead the charge in adopting more resilient, open, and developer-driven mobile security practices.
Learning Objectives:

• Understand the regulatory and legal catalysts reshaping mobile app security.
• Learn how API attacks exploit mobile app weaknesses, despite “built-in” platform defenses.
• Evaluate tools and frameworks, including app attestation and RASP, that enable secure API communication.
• Gain insights into how to implement dynamic secrets, certificate pinning, and secure client validation.
• Explore why monopolistic behaviors hinder innovation and what OWASP chapters can do about it.

Thanks to our SPONSOR: Approov
Regain Control of Your Mobile App Security.
Approov is a team of passionate developers dedicated to making the future of mobile secure. With focus on developing the world’s most complete end-to-end solution for mobile app security from the device into the cloud, our solutions are used worldwide to secure mobile apps and their APIs in everything from automotive, financial services, healthcare to e-commerce, gaming and media.

Thanks to our HOST: Accenture
Every day, we embrace change and create value for all our stakeholders around the world.

*Vendors interested in sponsoring please send an email to sponsorship.la@owasp.org*

CODE OF CONDUCT
We hope you enjoy the event, we care deeply about inclusivity and diversity so that OWASP is a comfortable and welcoming community for everyone. Please reach out to one of our chapter leaders if you have any feedback/concerns or would like to speak to us, we take these matters very seriously. You can find out more about our policies here:
https://owasp.org/www-policy/operational/conferences-events.html#conference-and-event-anti-harassment-policy