Mobile (iOS + Android), hardware roots of trust, IoT (BLE/WiFi/Matter), firmware analysis, anti-tampering, DRM, fleet OTA. From threat model to production OTA.
This is the course for builders shipping devices into the field — mobile apps, IoT products, embedded systems. Unlike web or system security, the adversary often has the device in hand. The course walks the full stack: mobile platform security models (iOS vs Android), hardware roots of trust (TPM, Secure Enclave, TrustZone, SGX), IoT protocol security (BLE, WiFi, Matter, MQTT), firmware reverse engineering (binwalk, Ghidra), side-channel and fault-injection awareness, and the operational reality of fleet management — OTA signing, recall, key rotation, regulated-device patterns. Four modules of substantive content (Mobile Fundamentals + Hardware Trust + IoT + Fleet OTA), with the rest of the depth in real-world references — vendor security guides, OWASP MASTG / IoT Top 10, and public post-mortems. Four capstones (you pick one): mobile app threat model + hardening, hardware-attested auth flow, end-to-end IoT audit, fleet OTA pipeline design.
Built by Lakshya Kumar
Paste this into any AI chat. Fill in the bracketed parts with your context — you'll get back a straight answer on whether this belongs on your plate.
I am learning device security — mobile platform models (iOS sandboxing, Android permissions, Play Integrity), hardware roots of trust (TPM, Secure Enclave, TrustZone, SGX), key attestation, side-channels and fault injection, IoT protocols (BLE, WiFi-Enterprise, Zigbee/Thread/Matter, MQTT), firmware extraction and analysis (binwalk, Ghidra), anti-tampering / DRM / obfuscation, and fleet operations (MDM, OTA, key rotation). Help me work through the actual mechanics with reference to Apple Platform Security, Android Source, OWASP MASTG, and real-world vendor implementations.
We grant free access case-by-case — students, career-switchers, builders on a tight budget. Sign in to send us a note.
Sign in to applyComplete all modules, then submit the required number of capstone projects. Each must earn a passing rating from an admin reviewer.
Pick a real mobile app you control (yours or open-source). Produce a 2-page threat model covering physical, network, and supply-chain surfaces. Audit against OWASP MASTG. Fix at least 5 findings (e.g. switch storage to Keychain/Keystore, add cert pinning, add root/jailbreak detection, harden the manifest, enable R8 obfuscation). Document.
Design and prototype an authentication flow that requires hardware-attested keys. On Android: Keystore + key attestation, server verifies cert chain rooted in Google's attestation root. On iOS: App Attest. Server: validates attestation extension and binds attested key to user. Document trust assumptions, rotation, and revocation.
Pick a real consumer IoT device (legally — yours, or with vendor permission). Audit physical, wireless, and cloud surfaces. Where legally permitted, extract firmware (via UART/JTAG/SPI flash). Run binwalk + Ghidra; identify the auth path; flag any hardcoded credentials, debug accounts, or insecure protocols. Produce a 3-page audit report.
Pick a hypothetical or real IoT product. Design the end-to-end OTA pipeline: artefact signing infrastructure (with key rotation), staged rollout (1% → 10% → 100%), health gates, automatic rollback, customer comms templates. Aim for 'patch a CVE within 48 hours on 99% of fleet, with 100% rollback safety'. Document the architecture, threat model, and rollout playbook.
Design a supply-chain defense plan for an embedded device's firmware: SBOM generation, signed build pipeline, reproducible build verification, attestation chain from build to deployment. Tabletop a compromise scenario and demonstrate detection at each layer.
Definitive reference for iOS, Secure Enclave, codesigning.