[WEB SECURITY] json, iphone, objectivec
David.Teller at mlstate.com
Thu Mar 10 04:40:52 EST 2011
Still from a broad security perspective.
Now, afaik, there is no such unsafe/unsecure JSON-manipulation library in Objective-C. However, the usual precautions still apply: don't use [char*] (good candidate for attack), only [NSString] (much more robust, not to mention more convenient), etc. – and ensure that your JSON library does the same.
Hope this helps,
On Mar 10, 2011, at 2:45 AM, WebAppSec at CoreForm wrote:
> > hello, im looking about best oractices regarding consuming json via
> > fat mobile application and especially iphone/ipad application
> > developed with objectiveC.
> > thanks
> That's a rather broad question. Given you've posted on this mailing list, I'll answer purely from a security perspective and also only from the perspective of your App:
Head of R&D
More information about the websecurity