mobile-security

# Mobile Security Skill Comprehensive mobile application security implementation for iOS and Android platforms, covering OWASP Mobile Security guidelines, secure storage, authentication, and security hardening. ## Overview This skill provides capabilities for implementing mobile security best practices, including secure data storage, network security, authentication mechanisms, and compliance with OWASP Mobile Application Security Verification Standard (MASVS). ## Capabilities ### Secure Storage Implementation - Configure iOS Keychain Services for sensitive data - Set up Android Keystore for cryptographic operations - Implement encrypted SharedPreferences/UserDefaults - Manage secure key generation and storage - Handle secure credential management ### Certificate Pinning - Implement TrustKit for iOS certificate pinning - Configure OkHttp CertificatePinner for Android - Set up Network Security Config (Android) - Configure App Transport Security (iOS) - Validate and rotate pinned certificates ### Biometric Authentication - Implement Face ID and Touch ID for iOS - Configure Fingerprint/BiometricPrompt for Android - Handle fallback authentication mechanisms - Manage biometric enrollment states - Secure biometric-protected keychain/keystore items ### Security Hardening - Implement jailbreak/root detection - Configure code obfuscation (ProGuard/R8, Swiftshield) - Set up anti-tampering mechanisms - Implement runtime integrity checks - Configure secure debugging settings ###...