CompTIA Mobile App Security+: what you need to know about the new ADR-001 and IOS-001 exams

  • By
  • November 8, 2013
1 Comment

As we mentioned the other day, CompTIA recently introduced two interesting certifications. So, if you are working towards the career of mobile apps developer or a cloud professional, consider that you have gotten another goal to strive to.

Today, we’re talking about the vendor’s Mobile App Security+ Certification. With this addition, CompTIA raises an important issue, so often ignored: the security of mobile apps. As we all know (or at least have a gut feeling about), unless we’re talking big players’ ecommerce apps, healthcare and finance, the apps we play around with on our smartphones, aren’t too secure, right?

With smartphones being so vulnerable to hacking, theft or loss, CompTIA insists that it’s the developer’s responsibility to secure the application. And the only sure way to do that lies in planning for security and building security features from the very first stages of the app development process. The challenges of mobile app security can be overcome with the latest technology, such as HTML5, CSS3, JQuery, JQuery Mobile.

So, as CompTIA is fighting to step up security standards of mobile app development, we can expect their certification to become the big thing employers will be looking for in the resumes of their potential developers. So, you should prepare for it. And, as usual, there is no better time than now.

CompTIA Mobile App Security+ has two editions of the exam – for Android and iOS mobile apps (exams ADR-001 and IOS-001 respectively). The exams include 100 multiple choice questions. There is no confirmed information as to whether there are going to be exams for other platforms (Windows Phone mainly, given its steady growth this year), so if Windows is your platform of choice, Microsoft is still your go-to certification destination.

The exams (ADR-001 and IOS-001) will certify that the candidate has the knowledge and skills required to create a secure native Android/iOS mobile application, including securing network communications, backend Web services, etc. Both exams are suited for professionals with at least 2 years of mobile app development experience. Candidates need to be familiar with the principles of secure application development, iOS/Android SDK, and Java(for Android developers).

According to CompTIA, Mobile App Security+ Certification Exam (iOS Edition) IOS-001 covers the following domains:

  1. Application Security and SDLC Fundamentals
  2. Objective-C Coding
  3. iOS SDK, APIs, and Security Features
  4. Web Service and Network Security
  5. Data Security and Implementing Encryption
  6. Application Hardening

To pass, you should have the knowledge and skills to:

  • Describe fundamental principles of application security
  • Describe the security model of iOS devices
  • Describe common threats to mobile application security
  • Develop moderately complex applications using the iOS SDK
  • Describe Web services security model and vulnerabilities
  • Properly implement SSL/TLS for Web communications
  • Utilize the security features of the iOS operating system and APIs
  • Properly implement secure coding techniques
  • Avoid insecure retention of data in memory
  • Describe common implementations of cryptography such as PKI
  • Leverage encryption for storage and/or communications
  • Harden an application against attack to levels appropriate for the risk model of the
  • Application

CompTIA Mobile AppSecurity+ Certification Exam (Android Edition) ADR-001 covers the following domains:

  1. Mobile application security, SDLC, and threat models
  2. Android SDK, APIs, and security features
  3. Web service and network security
  4. Data security and implementing encryption
  5. Application hardening and reverse engineering 5%
  6. Secure Java coding

The successful candidate should have the knowledge and skills to:

  • Describe fundamental principles of application security
  • Describe the security model of Android devices
  • Describe common threats to mobile application security
  • Develop moderately complex applications using the Android SDK
  • Describe Web services security model and vulnerabilities
  • Properly implement SSL/TLS for Web communications
  • Utilize the security features of the Android operating system and APIs
  • Properly implement secure coding techniques
  • Avoid insecure retention of data in memory
  • Describe common implementations of cryptography such as PKI
  • Leverage encryption for storage and/or communications
  • Understand access control and file permissions
  • Harden an application against attack to levels appropriate for the risk model of the application

For more information and detailed exam objectives, please refer to CompTIA’s official website.

Related posts:

  1. CompTIA’s Newest Certifications: CompTIA Mobile App Security+ and Cloud+
  2. Certification Options for Android Developers
  3. COMING SOON: CompTIA Mobility+ Certification
  4. Top 5 Jobs IT Certifications Can Help You Get – And Where You Should Start
Comments
* The most recent comment are at the top

Interesting posts

Impact of AI and Machine Learning on IT Certifications: How AI is influencing IT Certification Courses and Exams

The tech world is like a never-ending game of upgrades, and IT certifications are no exception. With Artificial Intelligence (AI) and Machine Learning (ML) taking over everything these days, it’s no surprise they are shaking things up in the world of IT training. As these technologies keep evolving, they are seriously influencing IT certifications, changing… Read More »

Blockchain Technology Certifications: Exploring Certifications For Blockchain Technology And Their Relevance In Various Industries Beyond Just Cryptocurrency

Greetings! So, you’re curious about blockchain technology and wondering if diving into certifications is worth your while? Well, you’ve come to the right place! Blockchain is not just the backbone of cryptocurrency; it’s a revolutionary technology that’s making waves across various industries, from finance to healthcare and beyond. Let’s unpack the world of blockchain certifications… Read More »

Everything ENNA: Cisco’s New Network Assurance Specialist Certification

The landscape of networking is constantly evolving, driven by rapid technological advancements and growing business demands. For IT professionals, staying ahead in this dynamic environment requires an ongoing commitment to developing and refining their skills. Recognizing the critical need for specialized expertise in network assurance, Cisco has introduced the Cisco Enterprise Network Assurance (ENNA) v1.0… Read More »

Best Networking Certifications to Earn in 2024

The internet is a wondrous invention that connects us to information and entertainment at lightning speed, except when it doesn’t. Honestly, grappling with network slowdowns and untangling those troubleshooting puzzles can drive just about anyone to the brink of frustration. But what if you could become the master of your own digital destiny? Enter the… Read More »

Navigating Vendor-Neutral vs Vendor-Specific Certifications: In-depth Analysis Of The Pros And Cons, With Guidance On Choosing The Right Type For Your Career Goals

Hey, tech folks! Today, we’re slicing through the fog around a classic dilemma in the IT certification world: vendor-neutral vs vendor-specific certifications. Whether you’re a fresh-faced newbie or a seasoned geek, picking the right cert can feel like trying to choose your favorite ice cream flavor at a new parlor – exciting but kinda overwhelming.… Read More »

Achieving Your ISO Certification Made Simple

So, you’ve decided to step up your game and snag that ISO certification, huh? Good on you! Whether it’s to polish your company’s reputation, meet supplier requirements, or enhance operational efficiency, getting ISO certified is like telling the world, “Hey, we really know what we’re doing!” But, like with any worthwhile endeavor, the road to… Read More »

sale-70-410-exam    | Exam-200-125-pdf    | we-sale-70-410-exam    | hot-sale-70-410-exam    | Latest-exam-700-603-Dumps    | Dumps-98-363-exams-date    | Certs-200-125-date    | Dumps-300-075-exams-date    | hot-sale-book-C8010-726-book    | Hot-Sale-200-310-Exam    | Exam-Description-200-310-dumps?    | hot-sale-book-200-125-book    | Latest-Updated-300-209-Exam    | Dumps-210-260-exams-date    | Download-200-125-Exam-PDF    | Exam-Description-300-101-dumps    | Certs-300-101-date    | Hot-Sale-300-075-Exam    | Latest-exam-200-125-Dumps    | Exam-Description-200-125-dumps    | Latest-Updated-300-075-Exam    | hot-sale-book-210-260-book    | Dumps-200-901-exams-date    | Certs-200-901-date    | Latest-exam-1Z0-062-Dumps    | Hot-Sale-1Z0-062-Exam    | Certs-CSSLP-date    | 100%-Pass-70-383-Exams    | Latest-JN0-360-real-exam-questions    | 100%-Pass-4A0-100-Real-Exam-Questions    | Dumps-300-135-exams-date    | Passed-200-105-Tech-Exams    | Latest-Updated-200-310-Exam    | Download-300-070-Exam-PDF    | Hot-Sale-JN0-360-Exam    | 100%-Pass-JN0-360-Exams    | 100%-Pass-JN0-360-Real-Exam-Questions    | Dumps-JN0-360-exams-date    | Exam-Description-1Z0-876-dumps    | Latest-exam-1Z0-876-Dumps    | Dumps-HPE0-Y53-exams-date    | 2017-Latest-HPE0-Y53-Exam    | 100%-Pass-HPE0-Y53-Real-Exam-Questions    | Pass-4A0-100-Exam    | Latest-4A0-100-Questions    | Dumps-98-365-exams-date    | 2017-Latest-98-365-Exam    | 100%-Pass-VCS-254-Exams    | 2017-Latest-VCS-273-Exam    | Dumps-200-355-exams-date    | 2017-Latest-300-320-Exam    | Pass-300-101-Exam    | 100%-Pass-300-115-Exams    |
http://www.portvapes.co.uk/    | http://www.portvapes.co.uk/    |