diff --git a/summary/sessions/235/attendees.adhoc b/summary/sessions/235/attendees.adhoc new file mode 100644 index 00000000..aefe7bd7 --- /dev/null +++ b/summary/sessions/235/attendees.adhoc @@ -0,0 +1,16 @@ +* Meet +* Meeting code: icx-rrek-aqq +* Created on 2025-05-10 22:35:19 +* Ended on 2025-05-11 00:22:46 +Full Name First Seen Time in Call +Advait Jadhav 2025-05-10 23:07:27 00:16:55 +Alpesh Bhagwatkar 2025-05-10 22:35:29 01:24:19 +Dheeraj Lalwani (Dhiru) 2025-05-10 23:59:24 00:23:17 +Pranav Prasanna Dani 2025-05-10 22:35:29 00:29:25 +Praveen Lodhi 2025-05-10 22:53:54 00:49:03 +Raghav Rathi 2025-05-10 23:35:40 00:03:59 +Ram Naik 2025-05-10 22:35:54 00:44:15 +Rishit Dagli 2025-05-10 23:20:40 00:19:09 +Uma Iyer 2025-05-10 22:35:21 01:47:24 +Viranchee L 2025-05-10 22:57:23 00:10:26 +Virinchi 2025-05-10 22:36:51 01:44:26 diff --git a/summary/sessions/235/content.adhoc b/summary/sessions/235/content.adhoc new file mode 100644 index 00000000..15197cab --- /dev/null +++ b/summary/sessions/235/content.adhoc @@ -0,0 +1,24 @@ +Alpesh - spoke about SSL Pinning + +SSL (Secure Sockets Layer) pinning is a security technique used to enhance the security of mobile applications by associating a specific SSL certificate or public key with a server's domain. It helps prevent man-in-the-middle (MITM) attacks by ensuring that the app only communicates with servers that have a specific, trusted certificate or public key. +Here's a more detailed explanation: +How it works: +During application development, the app developer "pins" a specific SSL certificate (or its public key) to the server's domain. +During runtime: +When the app establishes a secure connection with the server, it compares the server's presented certificate against the pinned certificate (or public key). +Protection against MITM: +If the server's certificate doesn't match the pinned one, the app will not establish a secure connection, preventing a potential MITM attacker from intercepting the communication. +Benefits: +SSL pinning significantly strengthens the security of mobile applications by adding an extra layer of verification beyond standard SSL validation, making it harder for attackers to impersonate a legitimate server. +Types: +There are two main types of pinning: certificate pinning (pinning the entire certificate) and public key pinning (pinning only the public key). +Best practices: +It's generally recommended to pin the public key instead of the entire certificate, as it provides a higher level of security and flexibility, according to LinkedIn and Temenos. +Praveen - Blockchain roadmap, use cases, and projects + +Dheeraj - Data Intensive applications O'Reilly Reading sessions + +Virinchi - power BI and DAX - for customers and internal employees to track expenses etc. + + +