iOS Developer


Overview

The iOS Developer learning path includes a variety of security courses that will vary depending on whether you are seeking core, advanced or elite paths. It is designed to provide developers with a solid foundation of security features necessary to develop applications for devices powered by the iOS platform.

The iOS Developer learning path provides secure coding best practices for designing and building iOS applications including:

  • Identifying common iOS application risks
  • Creating a mobile application threat model
  • Applying iOS platform-specific knowledge

Core

  • AWA 101 Fundamentals of Application Security
  • AWA 102 Secure Software Concepts
  • COD 110 Fundamentals of Secure Mobile Development
  • DES 260 Fundamentals of IoT Architecture and Design
  • ENG 112 Essential Access Control for Mobile Devices
  • ENG 205 Fundamentals of Threat Modeling

Advanced

  • COD 229 Insecure IoT Mobile Interface
  • COD 234-237 Mobile OWASP Top 10 Series (4)
  • COD 316 Creating Secure iOS Code in Objective C
  • COD 317 Creating Secure iOS Code in Swift
  • DES 202-205 Fundamentals of Cryptography Series (4)
  • TST 252 Testing for OS Command Injection
  • TST 257 Testing for Use of Hard-Coded Credentials
  • TST 259 Testing for Unrestricted Upload of File with Dangerous Type
  • TST 260 Testing for Reliance on Untrusted Inputs in a Security Decision
  • TST 261 Testing for Execution with Unnecessary Privileges
  • TST 264 Testing for Download of Code without Integrity Check
  • TST 266 Testing for Inclusion of Functionality from Untrusted Control Sphere
  • TST 267 Testing for Incorrect Permission Assignment for Critical Resource
  • TST 268 Testing for Use of a Potentially Dangerous Function
  • TST 270 Testing for Incorrect Calculation of Buffer Size
  • TST 271 Testing for Improper Restriction of Excessive Authentication Attempts
  • TST 272 Testing for Open Redirect

Elite

  • DES 101 Fundamentals of Secure Architecture
  • DES 212 Architecture Risk Analysis and Remediation
  • DES 311 Creating Secure Application Architecture
  • ENG 191-195 Integrating the MS SDL into your SDLC Series (5)
  • ENG 211 How to Create Application Security Design Requirements
  • ENG 311 Attack Surface Analysis & Reduction
  • ENG 312 How to Perform a Security Code Review

Learning Path Details

Number of Courses: 37

Total Duration: 19 hours

Total CPE Credits: 23