Michael Krueger
Sr. Director of Application Security
Washington, Washington, D.C., United States
Actions
Michael is the leader of the NowSecure expert penetration testing team and an avid mobile app developer. Using his combined 20+ years security engineering and app development expertise, Michael focuses on evaluating mobile, medical, automotive, and cloud systems for use in wireless, cellular, and high-threat environments. Michael is also an avid security and privacy standards advocate and has contributed to efforts by OWASP, NIST, App Defense Alliance MASA, and NIAP.
Area of Expertise
Topics
Speed Trap Ahead - Avoiding Costly Security and Privacy Issues in SDK Integration
Just as installing an engine into a car demands precision and attention to detail, integrating an SDK into an application requires consideration of security and privacy implications. Developers must ensure that the SDK seamlessly integrates with their codebase, prioritizing security protocols and privacy safeguards. The correct integration of the SDK with existing components is vital to mitigate potential vulnerabilities and uphold user privacy. In this turbocharged talk, we’ll cut straight to the finish line and give you the “so-what” to consider when integrating SDKs.
Be Aware & Prepare: Grow Downloads & User Trust with a MASA Validation
Looking to set your app apart from the rest on the Google Play Store? For 88% of users, how much personal data they share depends on how much they trust a company. Show customers you safeguard their data and are transparent with your privacy practices by completing a new Independent Security Review to get the badge on your Google Play Store Data safety declaration. In this session, learn about the new App Defense Alliance (ADA) Mobile App Security Assessment (MASA), launched Fall 2022 and how it can drive your business:
- Learn about the ADA MASA validation process
- Get tips on secure coding practices to speed your validation
- See how & why so many other top Android apps have been validated
Get the inside scoop from NowSecure experts who helped create the ADA MASA framework and who have conducted hundreds of MASA assessments.
Let Standards Light Your Way: Best Practices for App Developers
With an increasing focus on privacy and security, how do we avoid common app development pitfalls that get us in hot water? Common snippets on developer forums don't always consider repercussions of an action. Join us as we walk through five seemingly innocuous implementations that have real world security implications and how you can apply standards like the OWASP MASVS to design your app with a security first mindset. In this interactive and entertaining session, see how to prevent these from happening to you and take home practical security and privacy best practices with links to more resources for you and your team.
Best Practices for Mobile App Security from 4 App Failures
Cool apps rule -- but security and privacy matter too. With a decade of experience in mobile forensics, pen testing, OSS tools like FRIDA/RADERE and automated security testing software, we’ve seen it all. In this updated session, see 4 real android apps with real coding fails & how to ensure they don't happen to you. Coupon app enabling fake coupon generation. Food app redirecting cash to Venmo. Energy app that shhhh.... And more… In this interactive and entertaining session, see how to prevent these from happening to you and take home practical security and privacy best practices with links to more resources for you and your team.
droidcon San Francisco 2023 Sessionize Event
droidcon NYC 2019 Sessionize Event
Please note that Sessionize is not responsible for the accuracy or validity of the data provided by speakers. If you suspect this profile to be fake or spam, please let us know.
Jump to top