Yoshinori Iwano, profile picture
Uploaded byYoshinori Iwano
181 views

Introduction to Secure Coding Checker

The document introduces Secure Coding Checker, a tool developed by Sony Digital Network Applications that identifies vulnerabilities in Android apps. It scans APK files to detect issues within minutes and provides guidance to help developers quickly fix problems. The tool analyzes apps and visually displays any vulnerabilities found. It suggests fixes and links to sample code. Secure Coding Checker helps development teams test apps and minimize pre-release bugs by allowing multiple scans. It is currently used by over 100 listed companies in Japan.

Embed presentation

Download to read offline
Introduction to Secure Coding Checker A diagnostic tool for identifying vulnerabilities in Android apps Yoshinori.Iwano@sony.com Copyright 2016 Sony Digital Network Applications, Inc.
Copyright 2016 Sony Digital Network Applications, Inc.2 My Profile Sony Digital Network Applications, Inc. (SDNA) Marketing Producer Yoshinori Iwano Planning of the smartphone app and marketing. Achieving a million DL and Photo category No.1 in the some countries. Then launch the sale of a new business Secure Coding Checker from the initial. Sold to around 100 listed companies in Japan. Now, responsible for US sales & marketing too.
Introduction to Secure Coding Checker Copyright 2016 Sony Digital Network Applications, Inc.3
Copyright 2016 Sony Digital Network Applications, Inc. What is Secure Coding Checker? 4 A web-based vulnerabilities assessment tool for Android applications. Most popular assessment tool in Japan
Copyright 2016 Sony Digital Network Applications, Inc. Key features of Secure Coding Checker 5  Developers need only upload your Apk file.  Results within a minute and unlimited scan  Use the easy guidance to quickly fix the problems in your code.
Copyright 2016 Sony Digital Network Applications, Inc. Visualizing the effects of security provisions 6 Apps are automatically analyzed, and their vulnerabilities are displayed in a graphical format.
Copyright 2016 Sony Digital Network Applications, Inc. Full coverage from identification to correction of vulnerabilities 7 The tool suggests methods for fixing the vulnerabilities it detects The guidebook contains commercially-usable sample code that may be copied and pasted to fix vulnerabilities Guidebook Jump directly to the section of the guidebook that discusses the security issue in question
Copyright 2016 Sony Digital Network Applications, Inc. Diagnostic criteria taken from the Android Secure Design / Secure Coding Guidebook The Android Secure Design / Secure Coding Guidebook, Defect Standard for Android developer in Japan 8 June 2012 November 2012 April 2013 July 2014 June 2015 February 2016 Updated one to two times annually
Copyright 2016 Sony Digital Network Applications, Inc. Evidence exporting functionality 9 Test results may be exported to Excel. The resulting spreadsheet may be used as evidence that an application was developed in compliance with the JSSEC secure coding guidebook Export
Copyright 2016 Sony Digital Network Applications, Inc. Customer Benefit 10  Allows for tests to be conducted multiple times though out the development process.  So that pre-release trouble can be minimized  Helps developers find security issues in their code as early as possible  And gives the management team the ability to visualize and keep track of current security activities and trends
Copyright 2016 Sony Digital Network Applications, Inc. Our Costumers 11 around 100 listed companies Mobile operation companies Major game companies Electronic companies And variety of industries companies.
Copyright 2016 Sony Digital Network Applications, Inc. Free trial 12 Now offering free 4-week trials https://freetrial.scc.sonydna.com/account/subscribe Seeking for business partners !! Yoshinori.Iwano@sony.com
Copyright 2016 Sony Digital Network Applications, Inc. How to contact us 13 Product website: http://www.sonydna.com/sdna/e/solution/scc.html Android Security Report http://www.sonydna.com/sdna/e/solution/AndroidSecutiryReport_en_160 325Link.pdf Secure Coding Guide www.jssec.org/dl/android_securecoding_en.pdf Sony Digital Network Applications, Inc. Secure Coding Checker Department sdna-security-sales@jp.sony.com
Sony is a trademark of Sony corporation. Other Sony product or service names are trademarks or registered trademarks of Sony Corporation or each Sony group company. All other trademarks or registered trademarks are the property of their respective owners. Sony Digital Network Applications, Inc. 21-28 Higashigotanda 2-chome, Shinagawa-ku, Tokyo, 141-0022 Japan TEL:+81-50-3750-1897 Copyright 2016 Sony Digital Network Applications, Inc.14

More Related Content

PDF
Android Application Development China - ITOutsourcingChina
byIT Outsourcing China
 
PPT
Android workshop sn tech solutions
bySN Tech Solutions
 
PPTX
Iphone application development trends for 2016
byJeet7Banerjee
 
PPTX
Everything You Need to Know About Testing Foldable Phones
byPerfecto by Perforce
 
PDF
Mobile application
bySonia Madan
 
PPTX
Mobile apps developers oregon
byiapp Techologies LLP
 
PDF
Appknox Enterprise Offerings
byAppknox
 
DOCX
Synopsis minor project
byNidhi Chauhan
 
Android Application Development China - ITOutsourcingChina
byIT Outsourcing China
 
Android workshop sn tech solutions
bySN Tech Solutions
 
Iphone application development trends for 2016
byJeet7Banerjee
 
Everything You Need to Know About Testing Foldable Phones
byPerfecto by Perforce
 
Mobile application
bySonia Madan
 
Mobile apps developers oregon
byiapp Techologies LLP
 
Appknox Enterprise Offerings
byAppknox
 
Synopsis minor project
byNidhi Chauhan
 

What's hot

POT
Mobile Test Coverage- Israel 4th meetup
byPerfecto Mobile
 
PDF
Continuous Quality For a 5 Star Mobile Apps Delivery
byPerfecto Mobile
 
PPTX
Apps development company new york
byiapp Techologies LLP
 
PDF
Clear-Cut Advice In ios games For 2012
bylowlysynagogue957
 
PPTX
Android app bangalore.
bybrillmindztech brillmindztech
 
PPTX
Virgin Media's Mobile Quality Transformation
byPerfecto by Perforce
 
PPTX
Comparison between-ios-and-android
byCodiant
 
PPTX
Applications of useful andriod apps
by13201247
 
PPTX
Mobile App Quality Roadmap for DevTest Teams
byPerfecto by Perforce
 
PPTX
Ios app development company in kuwait
bykuwaitbrillmindz
 
PPTX
Which mobile os should you choose while building
byArpitGautam20
 
PPTX
Mobile Programming LLC sample Case Studies
byMobile Programming LLC
 
PDF
Are You Ready for iOS 8?
byKeynote Mobile Testing
 
PPTX
History of mobile apps
byTHINK IT Training
 
PDF
iOS 15 Is Upon Us: What New Can Apple Lovers Expect in iOS 15 Features?
byPixelCrayons
 
PDF
Mobile phone trends, user data & developer climate - frontend.fi, Helsinki
byRobert Nyman
 
PPTX
History of mobile apps
bySwathi Young
 
PPTX
Juc oct 2014 final
byPerfecto Mobile
 
PDF
Vulnerable Hunter
byIJERA Editor
 
PPTX
Why Mobile and Web Testing MUST Move to the Cloud
byPerfecto by Perforce
 
Mobile Test Coverage- Israel 4th meetup
byPerfecto Mobile
 
Continuous Quality For a 5 Star Mobile Apps Delivery
byPerfecto Mobile
 
Apps development company new york
byiapp Techologies LLP
 
Clear-Cut Advice In ios games For 2012
bylowlysynagogue957
 
Android app bangalore.
bybrillmindztech brillmindztech
 
Virgin Media's Mobile Quality Transformation
byPerfecto by Perforce
 
Comparison between-ios-and-android
byCodiant
 
Applications of useful andriod apps
by13201247
 
Mobile App Quality Roadmap for DevTest Teams
byPerfecto by Perforce
 
Ios app development company in kuwait
bykuwaitbrillmindz
 
Which mobile os should you choose while building
byArpitGautam20
 
Mobile Programming LLC sample Case Studies
byMobile Programming LLC
 
Are You Ready for iOS 8?
byKeynote Mobile Testing
 
History of mobile apps
byTHINK IT Training
 
iOS 15 Is Upon Us: What New Can Apple Lovers Expect in iOS 15 Features?
byPixelCrayons
 
Mobile phone trends, user data & developer climate - frontend.fi, Helsinki
byRobert Nyman
 
History of mobile apps
bySwathi Young
 
Juc oct 2014 final
byPerfecto Mobile
 
Vulnerable Hunter
byIJERA Editor
 
Why Mobile and Web Testing MUST Move to the Cloud
byPerfecto by Perforce
 

Viewers also liked

PPTX
Post exploitation techniques on OSX and Iphone, EuSecWest 2009
byVincenzo Iozzo
 
PDF
Cyber Operation Planning and Operational Design_Yayımlandı
byGovernment
 
PDF
Advanced Networking Concepts Applied Using Linux on IBM System z
byIBM India Smarter Computing
 
ODP
Network Monitoring in the age of the Cloud
byAugusto Ciuffoletti
 
PDF
Let's Build an Unpacker (Unpackers 101)
byMario Suvajac
 
PDF
Analysis of (unknown) file formats
byMario Suvajac
 
PDF
Stochastic Scheduling Algorithm for Distributed Cloud Networks using Heuristi...
byEswar Publications
 
PDF
Resiliency-Part One -11-3-2015
byDr Robert D. Childs
 
PPTX
Step On In, The Water's Fine! - An Introduction To Security Testing Within A ...
byTom Moore
 
PDF
Advanced Computer Networking
byTony Vowels
 
PDF
Epoch Universal Professional Services: Penetration Test
byEpoch Universal, Inc.
 
PPTX
Opportunities for CSOs in TOR Review and Amendment
byYuyun Wahyuningrum
 
PDF
Advanced Networking
byPratima Parida
 
PDF
From Russia with Love - modern tools used in Cyber Attacks
byThomas Burg
 
PDF
Tor projet
byJP TQ
 
PDF
On Edge Control Set of a Graph in Transportation Problems
byEswar Publications
 
PDF
Base64 Encoding
byJonathan Francis Roscoe
 
PDF
deftcon 2015 - Epifani, Picasso, Scarito, Meda - Tor Browser forensics on Win...
byDeft Association
 
DOCX
Design and operation of secure cyber physical systems
byI3E Technologies
 
PDF
High Scalability Network Monitoring for Communications Service Providers
byCA Technologies
 
Post exploitation techniques on OSX and Iphone, EuSecWest 2009
byVincenzo Iozzo
 
Cyber Operation Planning and Operational Design_Yayımlandı
byGovernment
 
Advanced Networking Concepts Applied Using Linux on IBM System z
byIBM India Smarter Computing
 
Network Monitoring in the age of the Cloud
byAugusto Ciuffoletti
 
Let's Build an Unpacker (Unpackers 101)
byMario Suvajac
 
Analysis of (unknown) file formats
byMario Suvajac
 
Stochastic Scheduling Algorithm for Distributed Cloud Networks using Heuristi...
byEswar Publications
 
Resiliency-Part One -11-3-2015
byDr Robert D. Childs
 
Step On In, The Water's Fine! - An Introduction To Security Testing Within A ...
byTom Moore
 
Advanced Computer Networking
byTony Vowels
 
Epoch Universal Professional Services: Penetration Test
byEpoch Universal, Inc.
 
Opportunities for CSOs in TOR Review and Amendment
byYuyun Wahyuningrum
 
Advanced Networking
byPratima Parida
 
From Russia with Love - modern tools used in Cyber Attacks
byThomas Burg
 
Tor projet
byJP TQ
 
On Edge Control Set of a Graph in Transportation Problems
byEswar Publications
 
Base64 Encoding
byJonathan Francis Roscoe
 
deftcon 2015 - Epifani, Picasso, Scarito, Meda - Tor Browser forensics on Win...
byDeft Association
 
Design and operation of secure cyber physical systems
byI3E Technologies
 
High Scalability Network Monitoring for Communications Service Providers
byCA Technologies
 

Recently uploaded

PDF
SAP WalkMe Overview.pdf SAP WalkMe Overview.pdf
byMurniatiSimbolon2
 
PDF
Purple Team - Active Directory and AzureAD v1
byVICTOR MAESTRE RAMIREZ
 
PPTX
IBM_NEXA_DAC2021 NEXA, a cloud-native platform for collaborative hardware log...
byArun Joseph
 
PDF
Master the FME Connector for ArcGIS: Streamlined Data Management & Robust Met...
bySafe Software
 
PDF
Chapter 2 Computer Threat .pdf
byGetnet Tigabie Askale -(GM)
 
PDF
Best-Travel-Portal-Development-Solutions-for-Online-Growth
bykashishnagarrajput
 
PDF
Best Bank Statement Converter Software - A Documentation-Based Meta-Analysis ...
bylewisconrada
 
PPTX
Lecture 04. about Black heads and Hackerss.pptx
byvinocol222
 
PDF
6 Insights from the Patron Saint of AI Failure
byScott M. Graffius
 
PDF
DataLiva-LivaGRC- Business Software for Governance, Risk, and Compliance
byMustafa Kuğu
 
PDF
Mobile Onboarding UX 11 Best Practices for Retention (2026).pdf
byDesign Studio UI UX
 
PDF
Josh Chu Boston - An Innovative Technology Executive
byJosh Chu Boston
 
PPTX
Full course that Prymehat uploads for you version 2
byOhenebaManu1
 
PDF
Higgsfield AI: The New Way to Create Cinematic Video
bytechnologyupside
 
PDF
The Cost of Missing Critical Connections in Data - Suspicious Behavior Detect...
byEnterprise Knowledge
 
PPTX
UNIT 1- Introduction to Basic of Computer Fundamentals
bypawarbhaktiit
 
PPTX
02_Extended Warehouse Management Functions and Features.pptx
byUdayakumar218983
 
PPTX
DVCON24-IBM ai/ml driven hardware verification
byArun Joseph
 
PPTX
Design Flaws and Known Attacks in Agentic AI - ITI Business Session
byInformation Technology Institute
 
PPTX
Building Real-Time Voice AI — Udaiappa Ramachandran
byUdaiappa Ramachandran
 
SAP WalkMe Overview.pdf SAP WalkMe Overview.pdf
byMurniatiSimbolon2
 
Purple Team - Active Directory and AzureAD v1
byVICTOR MAESTRE RAMIREZ
 
IBM_NEXA_DAC2021 NEXA, a cloud-native platform for collaborative hardware log...
byArun Joseph
 
Master the FME Connector for ArcGIS: Streamlined Data Management & Robust Met...
bySafe Software
 
Chapter 2 Computer Threat .pdf
byGetnet Tigabie Askale -(GM)
 
Best-Travel-Portal-Development-Solutions-for-Online-Growth
bykashishnagarrajput
 
Best Bank Statement Converter Software - A Documentation-Based Meta-Analysis ...
bylewisconrada
 
Lecture 04. about Black heads and Hackerss.pptx
byvinocol222
 
6 Insights from the Patron Saint of AI Failure
byScott M. Graffius
 
DataLiva-LivaGRC- Business Software for Governance, Risk, and Compliance
byMustafa Kuğu
 
Mobile Onboarding UX 11 Best Practices for Retention (2026).pdf
byDesign Studio UI UX
 
Josh Chu Boston - An Innovative Technology Executive
byJosh Chu Boston
 
Full course that Prymehat uploads for you version 2
byOhenebaManu1
 
Higgsfield AI: The New Way to Create Cinematic Video
bytechnologyupside
 
The Cost of Missing Critical Connections in Data - Suspicious Behavior Detect...
byEnterprise Knowledge
 
UNIT 1- Introduction to Basic of Computer Fundamentals
bypawarbhaktiit
 
02_Extended Warehouse Management Functions and Features.pptx
byUdayakumar218983
 
DVCON24-IBM ai/ml driven hardware verification
byArun Joseph
 
Design Flaws and Known Attacks in Agentic AI - ITI Business Session
byInformation Technology Institute
 
Building Real-Time Voice AI — Udaiappa Ramachandran
byUdaiappa Ramachandran
 

Introduction to Secure Coding Checker

  • 1.
    Introduction to SecureCoding Checker A diagnostic tool for identifying vulnerabilities in Android apps Yoshinori.Iwano@sony.com Copyright 2016 Sony Digital Network Applications, Inc.
  • 2.
    Copyright 2016 SonyDigital Network Applications, Inc.2 My Profile Sony Digital Network Applications, Inc. (SDNA) Marketing Producer Yoshinori Iwano Planning of the smartphone app and marketing. Achieving a million DL and Photo category No.1 in the some countries. Then launch the sale of a new business Secure Coding Checker from the initial. Sold to around 100 listed companies in Japan. Now, responsible for US sales & marketing too.
  • 3.
    Introduction to SecureCoding Checker Copyright 2016 Sony Digital Network Applications, Inc.3
  • 4.
    Copyright 2016 SonyDigital Network Applications, Inc. What is Secure Coding Checker? 4 A web-based vulnerabilities assessment tool for Android applications. Most popular assessment tool in Japan
  • 5.
    Copyright 2016 SonyDigital Network Applications, Inc. Key features of Secure Coding Checker 5  Developers need only upload your Apk file.  Results within a minute and unlimited scan  Use the easy guidance to quickly fix the problems in your code.
  • 6.
    Copyright 2016 SonyDigital Network Applications, Inc. Visualizing the effects of security provisions 6 Apps are automatically analyzed, and their vulnerabilities are displayed in a graphical format.
  • 7.
    Copyright 2016 SonyDigital Network Applications, Inc. Full coverage from identification to correction of vulnerabilities 7 The tool suggests methods for fixing the vulnerabilities it detects The guidebook contains commercially-usable sample code that may be copied and pasted to fix vulnerabilities Guidebook Jump directly to the section of the guidebook that discusses the security issue in question
  • 8.
    Copyright 2016 SonyDigital Network Applications, Inc. Diagnostic criteria taken from the Android Secure Design / Secure Coding Guidebook The Android Secure Design / Secure Coding Guidebook, Defect Standard for Android developer in Japan 8 June 2012 November 2012 April 2013 July 2014 June 2015 February 2016 Updated one to two times annually
  • 9.
    Copyright 2016 SonyDigital Network Applications, Inc. Evidence exporting functionality 9 Test results may be exported to Excel. The resulting spreadsheet may be used as evidence that an application was developed in compliance with the JSSEC secure coding guidebook Export
  • 10.
    Copyright 2016 SonyDigital Network Applications, Inc. Customer Benefit 10  Allows for tests to be conducted multiple times though out the development process.  So that pre-release trouble can be minimized  Helps developers find security issues in their code as early as possible  And gives the management team the ability to visualize and keep track of current security activities and trends
  • 11.
    Copyright 2016 SonyDigital Network Applications, Inc. Our Costumers 11 around 100 listed companies Mobile operation companies Major game companies Electronic companies And variety of industries companies.
  • 12.
    Copyright 2016 SonyDigital Network Applications, Inc. Free trial 12 Now offering free 4-week trials https://freetrial.scc.sonydna.com/account/subscribe Seeking for business partners !! Yoshinori.Iwano@sony.com
  • 13.
    Copyright 2016 SonyDigital Network Applications, Inc. How to contact us 13 Product website: http://www.sonydna.com/sdna/e/solution/scc.html Android Security Report http://www.sonydna.com/sdna/e/solution/AndroidSecutiryReport_en_160 325Link.pdf Secure Coding Guide www.jssec.org/dl/android_securecoding_en.pdf Sony Digital Network Applications, Inc. Secure Coding Checker Department sdna-security-sales@jp.sony.com
  • 14.
    Sony is atrademark of Sony corporation. Other Sony product or service names are trademarks or registered trademarks of Sony Corporation or each Sony group company. All other trademarks or registered trademarks are the property of their respective owners. Sony Digital Network Applications, Inc. 21-28 Higashigotanda 2-chome, Shinagawa-ku, Tokyo, 141-0022 Japan TEL:+81-50-3750-1897 Copyright 2016 Sony Digital Network Applications, Inc.14