AppSec Blog: Daily Archives: Nov 08, 2010

Insecure Handling of URL Schemes in Apple's iOS

This is a guest post from security researcher Nitesh Dhanjani. Nitesh will be giving a talk on "Hacking and Securing Next Generation iPhone and iPad Apps" at SANS AppSec 2011 In this article, I will discuss the security concerns I have regarding how URL Schemes are registered and invoked in iOS. URL Schemes, as Apple … Continue reading Insecure Handling of URL Schemes in Apple's iOS