FoodLinker

•

0 likes•972 views

barcelonaio

Presentation made on the event Barcelona iOS developers by Ronan O'Ciosoig

Technology

BARCELONA IOS DEVEOPERS
Ronan O Ciosoig
Show and Tell
14th May 2012
Thursday, May 16, 13

What is wrong with other solutions?
Thursday, May 16, 13

What is it that is being offered here?
Thursday, May 16, 13

FOOD SAFETY PLATFORM
• Food safety web site (for reference hospital)
• Manufacturers web site
• Web only widget to embed in manufacturer’s and food
regulatory or safety web sites
• Consumers web site
• Mobile app for iOS and Android
Thursday, May 16, 13

APP - KEY FEATURES
• Simple to read
• Downloadable database
• Customized user proﬁle
• Allergen information provided by a leading hospital
• Apple Push to update
• Secure
Thursday, May 16, 13

INTERNAL FEATURES
• English and Spanish supported
• Voice support (deactivated)
• Image cache
• System-wide logging and usage tracking
• not using any 3rd party lib.
• Encryption
Thursday, May 16, 13

SECURITY INTHE APP
Why do you need security here?
Gives manufacturers conﬁdence in the platform
Thursday, May 16, 13

CORE DATA ENCRYPTION
Thursday, May 16, 13

CORE DATA ENCRYPTION
• Add 2 classes (from Pro Core Data book):
• EncryptedStringTransformer
• NSData+Encryption
Thursday, May 16, 13

CORE DATA ENCRYPTION
• Add 2 classes (from Pro Core Data book):
• EncryptedStringTransformer
• NSData+Encryption
• Change properties to ‘transformable’
Thursday, May 16, 13

THE KEY?
• Add it into the code?
Thursday, May 16, 13

THE KEY?
• Add it into the code? Not a good idea
Thursday, May 16, 13

THE KEY?
• Add it into the code?
• Can you store it in the Key Chain?
Not a good idea
Thursday, May 16, 13

THE KEY?
• Add it into the code?
• Can you store it in the Key Chain?
Not a good idea
Not secure
Thursday, May 16, 13

THE KEY?
• Add it into the code?
• Can you store it in the Key Chain?
• Don’t store it.
Not a good idea
Not secure
Generate it!
Thursday, May 16, 13

SECURE CODING
... is about increasing the complexity
demanded for an attack against the
application to succeed.
Thursday, May 16, 13

SECURE CODING
Don’t make it easy
Thursday, May 16, 13

KEY GENERATION
Complex non-
obvious operation
Seed
Seed
Seed
Read Core
Data DB
Thursday, May 16, 13

NON-OBVIOUS OPERATION
Thursday, May 16, 13

SECURITY INTHE APP
• Core Data SQLite entries are encrypted
• Key is generated and never stored
• Seed for key stored in KeyChain
Thursday, May 16, 13

SIMPLICITY
...is about subtracting the obvious and adding the
meaningful.”
Thursday, May 16, 13

REFERENCES
Pro Core Data 2nd Edition (Michael Privat,
Robert Warner)
Hacking and securing iOS Applications, Jonathan
Zdziarski
The Laws of Simplicity, John Maeda
Thursday, May 16, 13

Similar to FoodLinker

Android meetup

Ty Smith

Finding sensitive information in text data

InfinIT - Innovationsnetværket for it

Writing applications for phones has been a daunting task since every platform uses it's own language and API's. PhoneGap will solve this problem for you by utilizing the browser capabilities. In this session we will see how we can turn a web based application into a native app. We will also look at posibilites to integrate native functionality, like the camera or accelerometer, in our application. The final part of the presentation is about deployment of these applications. Adobe offers a cloud based service called PhoneGap Build which easily builds your application for all platforms.

Native Javascript apps with PhoneGap

Ibuildings

7 things one should learn from iOS

Paul Ardeleanu

OpenAPI, formerly known as Swagger, is a specification for building and documenting APIs. This talk is about the significance of OpenAPI in the world of API development and when a lot of people suddenly realised its importance for modern-day software development. We'll explore the technical aspects, wider ecosystem, and future of OpenAPI in the world of API development and discuss the benefits of OpenAPI, its role in API documentation, and its importance in building robust and scalable APIs used by leading companies (e.g. OpenAI).

How ChatGPT led OpenAPI's Recent Spike in Popularity

Postman

Presentation from Conrad Stoll, Consulting Architect, Mutual Mobile at CocoaConf Mini Austin 2014. We are expected to secure our software. Products are judged by the quality of the user experience, and the absence of security issues. Security is about being responsible with a user’s information. The type of information your app handles defines how secure it needs to be. Not everyone is building a banking app. Security is all about making tradeoffs. Every app we build has an appropriate balance between security and usability. View this security best practices presentation to see 14 things you can do to build more secure software.

CocoaConf Austin 2014 | Demystifying Security Best Practices

Mutual Mobile

As a technology-focused CTO it can be very challenging to effectively bridge the goals between the business and technology. A primary challenge is maintaining an awareness of current (and future) technologies that could add value to your business, and developing the knowledge and skills to correctly evaluate them the unique perspective (and incentives) of the CTO position. This talk aims to share some of the techniques the OpenCredo team have identified over the past decade of working alongside technology leaders from a variety of organisations.

CTOs in London "The Challenges of Evaluating Development Technology Within th...

Daniel Bryant

Your organization has lots of data, but what makes sense to visualize? What data is going to have the most impact? What are your goals - are you trying to increase awareness, motivate donations or other actions? We'll explore the many different types of data that your organization likely consumes and produces - from financial data to program data to issue research data. We'll learn how different types of data are, can, and should be used to support your organizational goals. This session will give you the solid grounding to help you think strategically about visualizing your data.

Nonprofit Data: What to Visualize

Forum One

Java is everywhere. According to Oracle it’s on 3 billion devices and counting. We also know that Java is one of the most popular vehicles for delivering malware. But that’s just the plugin right? Well maybe not. Java on the server can be just at risk as the client. In this talk we’ll cover all aspects of Java Vulnerabilities. We’ll explain why Java has this dubious reputation, what’s being done to address the issues and what you have to do to reduce your exposure. You’ll learn about Java vulnerabilities in general: how they are reported, managed and fixed as well as learning about the specifics of attack vectors and just what a ‘vulnerability’ actually is. With the continuing increase in cybercrime it’s time you knew how to defend your code. With examples and code this talk will help you become more effective in tacking security issues in Java.

(java2days) The Anatomy of Java Vulnerabilities

Steve Poole

Over the past decade, companies have tapped into big data to understand their customers’ behavior, but the time has come to go a step further: what if you could adapt to each customer and offer them a personalized experience, based on their historic behavior, mood or geo location? Join us to hear about businesses who have transformed their customer’s relationship by leveraging their existing data but also real-time information and to learn about WSO2′s strategy to accompany you as you embark on this journey. Speaker: Isabelle Mauny Vice President – Product Management WSO2

WSO2Con ASIA 2016: Keynote: Want to Improve Customer Experience? Analytics Ca...

WSO2

Deployments in one click!

Manuel de la Peña Peña

Making Secure Choices

charlesgarrett

IPSA BUSINESS (INDIA) PVT. LTD., an ISO 9001:2008 certified company, feels proud to introduce ourselves as one of the leading Building & Architectural Hardware Manufacturing Company. We offer a wide range of products and serve all kinds of market segments, whether national or international. It has been over 4 decades since we have been dealing in Brass Door & Window Hardware (Door Locks & Handles), and Complete Aluminium & Stainless Steel Fitting Series.

IPSA India Price List May 2018

Krishan Attrish

It’s all about productivity or maybe it’s all about delivering value. Or creating secure applications, dealing with changing directions. Whatever it it we often feel that we’re lacking - that it’s hard enough to be any sort of developer. That even 1x is often a challenge In this talk we’re going to examine how to think more clearly about being a Java developer:, help you understand the tools and approaches that can offer practical insight into how you work now as well as providing guidance on alternatives that just might give you the powered armour you need. A mix of tools, proven processes, new techniques and lessons learnt the hard way make up a session designed to help you understand that being a 10x developer isn’t about having super powers - it’s about using the powers you already have in wiser, more considered ways.

Superman or Ironman - can everyone be a 10x developer?

Steve Poole

IOTDB - Semantic Metadata for the Internet of Things

David Janes

Practical iOS App Security

Totem_Training

Ot pt apps 2012 updated

Ellen Deutsch

All is not completely rosy in microservice-land. It is often a sign of an architectural approach’s maturity that in addition to the emergence of well established principles and practices, that anti-patterns also begin to be identified and classified. In this talk we introduce the 2016 edition of the seven deadly sins that if left unchecked could easily ruin your next microservices project... This talk will take a tour of some of the nastiest anti-patterns in microservices, giving you the tools to not only avoid but also slay these demons before they tie up your project in their own special brand of hell. Topics covered include: Pride - selfishly ignoring the new requirements for testing; Envy - introducing inappropriate intimacy within services by creating a shared domain model; Wrath - failing to deal with the inevitable bad things that occur within a distributed system; Sloth - composing services in a lazy fashion, which ultimately leads to the creation of a “Distributed Monolith”; and Lust - embracing the latest and greatest technology without evaluating the operational impact incurred by these choices.

QCon NY 2016: "The Seven (More) Deadly Sins of Microservices"

Daniel Bryant

PyData: Past, Present Future (PyData SV 2014 Keynote)

Peter Wang

LUISS - Deep Learning and data analyses - 09/01/19

Alberto Paro

Similar to FoodLinker (20)

Android meetup

Finding sensitive information in text data

Native Javascript apps with PhoneGap

7 things one should learn from iOS

How ChatGPT led OpenAPI's Recent Spike in Popularity

CocoaConf Austin 2014 | Demystifying Security Best Practices

CTOs in London "The Challenges of Evaluating Development Technology Within th...

Nonprofit Data: What to Visualize

(java2days) The Anatomy of Java Vulnerabilities

WSO2Con ASIA 2016: Keynote: Want to Improve Customer Experience? Analytics Ca...

Deployments in one click!

Making Secure Choices

IPSA India Price List May 2018

Superman or Ironman - can everyone be a 10x developer?

IOTDB - Semantic Metadata for the Internet of Things

Practical iOS App Security

Ot pt apps 2012 updated

QCon NY 2016: "The Seven (More) Deadly Sins of Microservices"

PyData: Past, Present Future (PyData SV 2014 Keynote)

LUISS - Deep Learning and data analyses - 09/01/19

Recently uploaded

Effective data discovery is crucial for maintaining compliance and mitigating risks in today's rapidly evolving privacy landscape. However, traditional manual approaches often struggle to keep pace with the growing volume and complexity of data. Join us for an insightful webinar where industry leaders from TrustArc and Privya will share their expertise on leveraging AI-powered solutions to revolutionize data discovery. You'll learn how to: - Effortlessly maintain a comprehensive, up-to-date data inventory - Harness code scanning insights to gain complete visibility into data flows leveraging the advantages of code scanning over DB scanning - Simplify compliance by leveraging Privya's integration with TrustArc - Implement proven strategies to mitigate third-party risks Our panel of experts will discuss real-world case studies and share practical strategies for overcoming common data discovery challenges. They'll also explore the latest trends and innovations in AI-driven data management, and how these technologies can help organizations stay ahead of the curve in an ever-changing privacy landscape.

TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery

TrustArc

How to Troubleshoot Apps for the Modern Connected Worker

ThousandEyes

Scaling API-first – The story of a global engineering organization Ian Reasor, Senior Computer Scientist - Adobe Radu Cotescu, Senior Computer Scientist - Adobe Apidays New York 2024: The API Economy in the AI Era (April 30 & May 1, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe

apidays

Join our latest Connector Corner webinar to discover how UiPath Integration Service revolutionizes API-centric automation in a 'Quote to Cash' process—and how that automation empowers businesses to accelerate revenue generation. A comprehensive demo will explore connecting systems, GenAI, and people, through powerful pre-built connectors designed to speed process cycle times. Speakers: James Dickson, Senior Software Engineer Charlie Greenberg, Host, Product Marketing Manager

Connector Corner: Accelerate revenue generation using UiPath API-centric busi...

DianaGray10

Accelerating FinTech Innovation: Unleashing API Economy and GenAI Vasa Krishnan, Chief Technology Officer - FinResults Apidays New York 2024: The API Economy in the AI Era (April 30 & May 1, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...

apidays

Three things you will take away from the session: • How to run an effective tenant-to-tenant migration • Best practices for before, during, and after migration • Tips for using migration as a springboard to prepare for Copilot in Microsoft 365 Main ideas: Migration Overview: The presentation covers the current reality of cross-tenant migrations, the triggers, phases, best practices, and benefits of a successful tenant migration Considerations: When considering a migration, it is important to consider the migration scope, performance, customization, flexibility, user-friendly interface, automation, monitoring, support, training, scalability, data integrity, data security, cost, and licensing structure Next Wave: The next wave of change includes the launch of Copilot, which requires businesses to be prepared for upcoming changes related to Copilot and the cloud, and to consolidate data and tighten governance ShareGate: ShareGate can help with pre-migration analysis, configurable migration tool, and automated, end-user driven collaborative governance

Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff

sammart93

The value of a flexible API Management solution for Open Banking Steve Melan, Manager for IT Innovation and Architecture - State's and Saving's Bank of Luxembourg Apidays New York 2024: The API Economy in the AI Era (April 30 & May 1, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays New York 2024 - The value of a flexible API Management solution for O...

apidays

In this keynote, Asanka Abeysinghe, CTO,WSO2 will explore the shift towards platformless technology ecosystems and their importance in driving digital adaptability and innovation. We will discuss strategies for leveraging decentralized architectures and integrating diverse technologies, with a focus on building resilient, flexible, and future-ready IT infrastructures. We will also highlight WSO2's roadmap, emphasizing our commitment to supporting this transformative journey with our evolving product suite.

Platformless Horizons for Digital Adaptability

WSO2

Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving

Edi Saputra

Following the popularity of "Cloud Revolution: Exploring the New Wave of Serverless Spatial Data," we're thrilled to announce this much-anticipated encore webinar. In this sequel, we'll dive deeper into the Cloud-Native realm by uncovering practical applications and FME support for these new formats, including COGs, COPC, FlatGeoBuf, GeoParquet, STAC, and ZARR. Building on the foundation laid by industry leaders Michelle Roby of Radiant Earth and Chris Holmes of Planet in the first webinar, this second part offers an in-depth look at the real-world application and behind-the-scenes dynamics of these cutting-edge formats. We will spotlight specific use-cases and workflows, showcasing their efficiency and relevance in practical scenarios. Discover the vast possibilities each format holds, highlighted through detailed discussions and demonstrations. Our expert speakers will dissect the key aspects and provide critical takeaways for effective use, ensuring attendees leave with a thorough understanding of how to apply these formats in their own projects. Elevate your understanding of how FME supports these cutting-edge technologies, enhancing your ability to manage, share, and analyze spatial data. Whether you're building on knowledge from our initial session or are new to the serverless spatial data landscape, this webinar is your gateway to mastering cloud-native formats in your workflows.

Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME

Safe Software

Webinar Recording: https://www.panagenda.com/webinars/why-teams-call-analytics-is-critical-to-your-entire-business Nothing is as frustrating and noticeable as being in an important call and being unable to see or hear the other person. Not surprising then, that issues with Teams calls are among the most common problems users call their helpdesk for. Having in depth insight into everything relevant going on at the user’s device, local network, ISP and Microsoft itself during the call is crucial for good Microsoft Teams Call quality support. To ensure a quick and adequate solution and to ensure your users get the most out of their Microsoft 365. But did you know that ‘bad calls’ are also an excellent indicator of other problems arising? Precisely because it is so noticeable!? Like the canary in the mine, bad calls can be early indicators of problems. Problems that might otherwise not have been noticed for a while but can have a big impact on productivity and satisfaction. Join this session by Christoph Adler to learn how true Microsoft Teams call quality analytics helped other organizations troubleshoot bad calls and identify and fix problems that impacted Teams calls or the use of Microsoft365 in general. See what it can do to keep your users happy and productive! In this session we will cover - Why CQD data alone is not enough to troubleshoot call problems - The importance of attributing call problems to the right call participant - What call quality analytics can do to help you quickly find, fix-, and prevent problems - Why having retrospective detailed insights matters - Real life examples of how others have used Microsoft Teams call quality monitoring to problem shoot problems with their ISP, network, device health and more.

Why Teams call analytics are critical to your entire business

panagenda

"I see eyes in my soup": How Delivery Hero implemented the safety system for ...

Zilliz

💥 You’re lucky! We’ve found two different (lead) developers that are willing to share their valuable lessons learned about using UiPath Document Understanding! Based on recent implementations in appealing use cases at Partou and SPIE. Don’t expect fancy videos or slide decks, but real and practical experiences that will help you with your own implementations. 📕 Topics that will be addressed: • Training the ML-model by humans: do or don't? • Rule-based versus AI extractors • Tips for finding use cases • How to start 👨‍🏫👨‍💻 Speakers: o Dion Morskieft, RPA Product Owner @Partou o Jack Klein-Schiphorst, Automation Developer @Tacstone Technology

DEV meet-up UiPath Document Understanding May 7 2024 Amsterdam

UiPathCommunity

DBX First Quarter 2024 Investor Presentation

Dropbox

💉💊+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHABI}}+971581248768 +971581248768 Mtp-Kit (500MG) Prices » Dubai [(+971581248768**)] Abortion Pills For Sale In Dubai, UAE, Mifepristone and Misoprostol Tablets Available In Dubai, UAE CONTACT DR.Maya Whatsapp +971581248768 We Have Abortion Pills / Cytotec Tablets /Mifegest Kit Available in Dubai, Sharjah, Abudhabi, Ajman, Alain, Fujairah, Ras Al Khaimah, Umm Al Quwain, UAE, Buy cytotec in Dubai +971581248768''''Abortion Pills near me DUBAI | ABU DHABI|UAE. Price of Misoprostol, Cytotec” +971581248768' Dr.DEEM ''BUY ABORTION PILLS MIFEGEST KIT, MISOPROTONE, CYTOTEC PILLS IN DUBAI, ABU DHABI,UAE'' Contact me now via What's App…… abortion Pills Cytotec also available Oman Qatar Doha Saudi Arabia Bahrain Above all, Cytotec Abortion Pills are Available In Dubai / UAE, you will be very happy to do abortion in Dubai we are providing cytotec 200mg abortion pill in Dubai, UAE. Medication abortion offers an alternative to Surgical Abortion for women in the early weeks of pregnancy. We only offer abortion pills from 1 week-6 Months. We then advise you to use surgery if its beyond 6 months. Our Abu Dhabi, Ajman, Al Ain, Dubai, Fujairah, Ras Al Khaimah (RAK), Sharjah, Umm Al Quwain (UAQ) United Arab Emirates Abortion Clinic provides the safest and most advanced techniques for providing non-surgical, medical and surgical abortion methods for early through late second trimester, including the Abortion By Pill Procedure (RU 486, Mifeprex, Mifepristone, early options French Abortion Pill), Tamoxifen, Methotrexate and Cytotec (Misoprostol). The Abu Dhabi, United Arab Emirates Abortion Clinic performs Same Day Abortion Procedure using medications that are taken on the first day of the office visit and will cause the abortion to occur generally within 4 to 6 hours (as early as 30 minutes) for patients who are 3 to 12 weeks pregnant. When Mifepristone and Misoprostol are used, 50% of patients complete in 4 to 6 hours; 75% to 80% in 12 hours; and 90% in 24 hours. We use a regimen that allows for completion without the need for surgery 99% of the time. All advanced second trimester and late term pregnancies at our Tampa clinic (17 to 24 weeks or greater) can be completed within 24 hours or less 99% of the time without the need surgery. The procedure is completed with minimal to no complications. Our Women's Health Center located in Abu Dhabi, United Arab Emirates, uses the latest medications for medical abortions (RU-486, Mifeprex, Mifegyne, Mifepristone, early options French abortion pill), Methotrexate and Cytotec (Misoprostol). The safety standards of our Abu Dhabi, United Arab Emirates Abortion Doctors remain unparalleled. They consistently maintain the lowest complication rates throughout the nation. Our Physicians and staff are always available to answer questions and care for women in one of the most difficult times in their lives. The decision to have an abortion at the Abortion Cl

+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...

?#DUbAI#??##{{(☎️+971_581248768%)**%*]'#abortion pills for sale in dubai@

Whatsapp Number Escorts Call girls 8617370543 Available 24x7 Mcleodganj Call Girls Service Offer Genuine VIP Model Escorts Call Girls in Your Budget. Mcleodganj Call Girls Service Provide Real Call Girls Number. Make Your Sexual Pleasure Memorable with Our Mcleodganj Call Girls at Affordable Price. Top VIP Escorts Call Girls, High Profile Independent Escorts Call Girls, Housewife Women Escorts Call Girl, College Girls Escorts Call Girls, Russian Escorts Call girls Service in Your Budget.

Mcleodganj Call Girls 🥰 8617370543 Service Offer VIP Hot Model

Deepika Singh

Following the popularity of “Cloud Revolution: Exploring the New Wave of Serverless Spatial Data,” we’re thrilled to announce this much-anticipated encore webinar. In this sequel, we’ll dive deeper into the Cloud-Native realm by uncovering practical applications and FME support for these new formats, including COGs, COPC, FlatGeoBuf, GeoParquet, STAC, and ZARR. Building on the foundation laid by industry leaders Michelle Roby of Radiant Earth and Chris Holmes of Planet in the first webinar, this second part offers an in-depth look at the real-world application and behind-the-scenes dynamics of these cutting-edge formats. We will spotlight specific use-cases and workflows, showcasing their efficiency and relevance in practical scenarios. Discover the vast possibilities each format holds, highlighted through detailed discussions and demonstrations. Our expert speakers will dissect the key aspects and provide critical takeaways for effective use, ensuring attendees leave with a thorough understanding of how to apply these formats in their own projects. Elevate your understanding of how FME supports these cutting-edge technologies, enhancing your ability to manage, share, and analyze spatial data. Whether you’re building on knowledge from our initial session or are new to the serverless spatial data landscape, this webinar is your gateway to mastering cloud-native formats in your workflows.

Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME

Safe Software

The Good, the Bad and the Governed - Why is governance a dirty word? David O'Neill, Chief Operating Officer - APIContext Apidays New York 2024: The API Economy in the AI Era (April 30 & May 1, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...

apidays

Vector Search -An Introduction in Oracle Database 23ai.pptx

Remote DBA Services

Elevate Developer Efficiency & build GenAI Application with Amazon Q

Bhuvaneswari Subramani

Recently uploaded (20)

TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery

How to Troubleshoot Apps for the Modern Connected Worker

Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe

Connector Corner: Accelerate revenue generation using UiPath API-centric busi...

Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...

Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff

Apidays New York 2024 - The value of a flexible API Management solution for O...

Platformless Horizons for Digital Adaptability

Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving

Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME

Why Teams call analytics are critical to your entire business

"I see eyes in my soup": How Delivery Hero implemented the safety system for ...

DEV meet-up UiPath Document Understanding May 7 2024 Amsterdam

DBX First Quarter 2024 Investor Presentation

+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...

Mcleodganj Call Girls 🥰 8617370543 Service Offer VIP Hot Model

Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME

Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...

Vector Search -An Introduction in Oracle Database 23ai.pptx

Elevate Developer Efficiency & build GenAI Application with Amazon Q

FoodLinker

1. BARCELONA IOS DEVEOPERS Ronan O Ciosoig Show and Tell 14th May 2012 Thursday, May 16, 13

2. Thursday, May 16, 13

3. Why do we need it? Thursday, May 16, 13

4. What is wrong with other solutions? Thursday, May 16, 13

5. What is it that is being offered here? Thursday, May 16, 13

6. FOOD SAFETY PLATFORM • Food safety web site (for reference hospital) • Manufacturers web site • Web only widget to embed in manufacturer’s and food regulatory or safety web sites • Consumers web site • Mobile app for iOS and Android Thursday, May 16, 13

7. APP - KEY FEATURES • Simple to read • Downloadable database • Customized user proﬁle • Allergen information provided by a leading hospital • Apple Push to update • Secure Thursday, May 16, 13

8. DEMO Thursday, May 16, 13

9. USINGTHE APP • Use anonymously - no registration is required • Register and deﬁne intolerances / allergies • Download database • Select by • Brand • Barcode scanning • Text search Thursday, May 16, 13

10. INTERNAL FEATURES • English and Spanish supported • Voice support (deactivated) • Image cache • System-wide logging and usage tracking • not using any 3rd party lib. • Encryption Thursday, May 16, 13

11. SECURITY INTHE APP Thursday, May 16, 13

12. SECURITY INTHE APP Why do you need security here? Gives manufacturers conﬁdence in the platform Thursday, May 16, 13

13. CORE DATA ENCRYPTION Thursday, May 16, 13

14. CORE DATA ENCRYPTION • Add 2 classes (from Pro Core Data book): • EncryptedStringTransformer • NSData+Encryption Thursday, May 16, 13

15. CORE DATA ENCRYPTION • Add 2 classes (from Pro Core Data book): • EncryptedStringTransformer • NSData+Encryption • Change properties to ‘transformable’ Thursday, May 16, 13

16. CORE DATA ENCRYPTION • Add 2 classes (from Pro Core Data book): • EncryptedStringTransformer • NSData+Encryption • Change properties to ‘transformable’ • Set the name to “EncryptedStringTransformer” Thursday, May 16, 13

17. CORE DATA ENCRYPTION • Add 2 classes (from Pro Core Data book): • EncryptedStringTransformer • NSData+Encryption • Change properties to ‘transformable’ • Set the name to “EncryptedStringTransformer” • Set the key in the EncryptedStringTransformer.m class Thursday, May 16, 13

18. CORE DATA ENCRYPTION Thursday, May 16, 13

19. CORE DATA ENCRYPTION Thursday, May 16, 13

20. CORE DATA ENCRYPTION Thursday, May 16, 13

21. THE KEY? Thursday, May 16, 13

22. THE KEY? • Add it into the code? Thursday, May 16, 13

23. THE KEY? • Add it into the code? Not a good idea Thursday, May 16, 13

24. THE KEY? • Add it into the code? • Can you store it in the Key Chain? Not a good idea Thursday, May 16, 13

25. THE KEY? • Add it into the code? • Can you store it in the Key Chain? Not a good idea Not secure Thursday, May 16, 13

26. THE KEY? • Add it into the code? • Can you store it in the Key Chain? • Don’t store it. Not a good idea Not secure Generate it! Thursday, May 16, 13

27. SECURE CODING Thursday, May 16, 13

28. SECURE CODING ... is about increasing the complexity demanded for an attack against the application to succeed. Thursday, May 16, 13

29. SECURE CODING Don’t make it easy Thursday, May 16, 13

30. KEY GENERATION Complex non- obvious operation Seed Seed Seed Read Core Data DB Thursday, May 16, 13

31. NON-OBVIOUS OPERATION Thursday, May 16, 13

32. SECURITY INTHE APP • Core Data SQLite entries are encrypted • Key is generated and never stored • Seed for key stored in KeyChain Thursday, May 16, 13

33. Thursday, May 16, 13

34. Thursday, May 16, 13

35. SIMPLICITY Thursday, May 16, 13

36. SIMPLICITY Thursday, May 16, 13

37. SIMPLICITY ...is about subtracting the obvious and adding the meaningful.” Thursday, May 16, 13

38. QUESTIONS? Thursday, May 16, 13

39. REFERENCES Pro Core Data 2nd Edition (Michael Privat, Robert Warner) Hacking and securing iOS Applications, Jonathan Zdziarski The Laws of Simplicity, John Maeda Thursday, May 16, 13

FoodLinker

Recommended

Recommended

More Related Content

Similar to FoodLinker

Similar to FoodLinker (20)

Recently uploaded

Recently uploaded (20)

FoodLinker