Fragments is a two-day, single track conference on the mobile ecosystem in India. The conference will feature talks – full-length and crisp – panel discussions, and Off-The-Record (OTR) sessions.
Modern Development Practices
- How are modern development teams structured?
- How do you achieve cross platform design/feature parity?
- How do your collaboration, decision making, and development processes adapt to accommodate cross platform teams?
Continuous Integration/Continuous Delivery
- How is your CI/CD pipeline designed to allow you to test, build and deploy to multiple platforms (Android,iOS,Web) simultaneously?
- What tools and processes to designers follow when they have to design for multiple platforms simultaneously, given that each platform as it’s own guidelines/styles?
Localisation and Accessibility
- How do you handle localization and accessibility in modern mobile apps?
Progressive Web Apps
- Are progressive web apps the way forward?
- Are progressive web apps a better way to solve cross platform development? What’s their future?
On the ground case studies
- Talks on how companies have changed their development workflows, processes, teams, app architecture, and tooling over time.
Platform specific talks
- We are also open to platform specific technology talks that are novel in their content or approach.
HasGeek believes in open source as the binding force of our community. If you are describing a codebase for developers to work with, we’d like for it to be available under a permissive open source licence. If your software is commercially licensed or available under a combination of commercial and restrictive open source licences (such as the various forms of the GPL), please consider picking up a sponsorship. We recognise that there are valid reasons for commercial licensing, but ask that you support us in return for giving you an audience. Your session will be marked on the schedule as a “sponsored session”.
Proposals will be filtered and shortlisted by an Editorial Panel.
** Make sure to add links to videos / slide decks when submitting proposals. We will not review proposals without detailed outlines or slide decks and preview videos.**
The first filter for every proposal is whether the technology or solution you are referring to is open source or not. If you are referring to a proprietary technology, consider picking up a sponsored session.
The criteria for selecting proposals, in the order of importance, are:
- Key insight or takeaway: what can you share with participants that will help them in their work and in thinking about the problem?
- Structure of the talk and flow of content: a detailed outline helps us understand the focus of the talk, and the clarity of your thought process.
- Ability to communicate succinctly, and how you engage with the audience. You must submit link to a two-minute preview video explaining what your talk is about, and what is the key takeaway for the audience.
No one submits the perfect proposal in the first instance. We therefore encourage you to:
- Submit your proposal early so that we have more time to iterate if the proposal has potential.
- Talk to us on our community Slack channel: https://friends.hasgeek.com if you want to discuss an idea for your proposal, and need help / advice on how to structure it.
Our editorial team also helps potential speakers in honing their speaking skills, and rehearsing at least twice - before the main conference - to sharpen the focus of talks.
A speaker is NOT confirmed a slot unless we explicitly mention so in an email or over any other medium of communication.
Selected speakers get a pass to the conference and networking dinner. We do not provide free passes for speakers’ colleagues and spouses.
We also pay an honararium of Rs. 5,000 to each speaker, at the end of their talk.
Fragments 2017 is funded through ticket purchases and sponsorships.
We try to provide full or partial travel grants for at least two international and two domestic speakers.
First preference in awarding grants is given to women speakers, persons of non-binary genders, and speakers from Africa. If you require a travel grant, indicate this in the field where you add your location.
Deadline for submitting proposals: 30 July, 2017
**Conference date: ** 12-13 Sept, 2017
For more information about speaking proposals, contact email@example.com.
For tickets and sponsorships, contact firstname.lastname@example.org or call +91-7676332020.
Mobile AppSec From an Attacker's Perspective
This primer talk is intended to set the context for a wider discussion on Mobile App Security with some background on web application security. This talk will briefly introduce the participants to the various tools and techniques available in the arsenal of a potential attacker with the objective of spreading security awareness. This will allow the participants to avoid common security issues during coding and better design apps that are secure. Expectations is developers who are quite technical will be able to come up with their mitigation strategies if they know/understand attackers approach.
The talk will cover few case studies of how mobile apps can be used as entrypoints into a larger solution consisting of backend applications and services. It is a common practise to assume that credentials or open web service endpoints hardcoded in a mobile app will not be discovered. We will show how trivial it is to extract such information from an app through static analysis.
Abhisek has over 10 years experience conducting security research and security services including penetration testing, source code review and expert training. He is Head of Technology at Appsecco, where his core focus is building security automation tools & techniques. He has also conducted multiple mobile app penetration testing and proposed solutions to enhance security of mobile apps for corporate clients.
He is an active vulnerability researcher with multiple CVE credited to his name including; CVE-2015-0085, CVE-2015-1650, CVE-2015-1682, CVE-2015-2376, CVE-2015-2555, CVE-2014-4117, CVE-2014-6113.
As an open source software contributor, he has developed or contributed to multiple projects including:
- Wireplay – TCP Session Replay and Fuzzing Tool
- Penovox – Generic Hidden Code Extraction using Dynamic Binary Instrumentation
- HiDump – Injected Code Extraction Tool for Windows Malware Analysis
- RbWinDBG – Pure Ruby Windows User Space Debugger
- Ruby-Libnet – Ruby binding for Libnet library