Fortifying WKWebView: Security Checklist for iOS Engineers | Valeriy Popov | Tech Lead at FAANG

The native iOS ecosystem is well-regarded for its strong security, featuring app sandboxing, a statically typed language for the development, and libraries built with security in mind. However, developers occasionally need to venture beyond the native environment to incorporate web parts. WebKit offers valuable support for securing these integrations. In this talk, I provide a practical checklist tailored for iOS engineers, who may not be security experts, to guide them in securely integrating web views into their applications.

What you’ll learn from this talk:
• Configuring WKWebView: establishing secure transport, managing cookies effectively, and serving html/css assets securely
• A brief look at common attacks and strategies to defend against them
• Methods for crafting a secure JavaScript bridge between Web and Native
• A discussion of native APIs safe for web calls and those to avoid for minimizing security risks and maintaining app integrity

🔗 Link to the event page
https://www.codementor.io/events/fortifying-wkwebview-security-checklist-for-ios-engineers-gzc8azm917
📆 Next event: Essential Algo Concepts: Permutations vs Combinations
https://www.codementor.io/events/essential-algo-concepts-permutations-vs-combinations-gztfnvhv0x
💻 Find a coding mentor
https://www.codementor.io/
—-
Follow Valeriy on his socials:
📝 Linkedin: https://www.linkedin.com/in/valerii-popov-2b151061/
🐦 Twitter: https://twitter.com/complexityclass
😺 GitHub: https://github.com/complexityclass
—-

👋 Stay connected with us on social:
Twitter: https://twitter.com/codementorIO
LinkedIn: https://www.linkedin.com/company/codementor/
Facebook: https://www.facebook.com/codementor

#Developer #mobiledevelopment