New Mobile Developer Seeking Guidance on React Native Security for Banking Apps

[Syammed2429]

Hi everyone,

I’m a new mobile developer and have recently transitioned from web development to working on a banking application using React Native. Since this is my first experience in mobile development, I'm eager to learn about the best security practices to protect sensitive user data effectively.

Given the highly sensitive nature of the information involved, I want to ensure that our application is secure and compliant with applicable regulations. Here are a few questions I have:

What are the essential security measures you recommend for React Native banking applications? I’ve heard about practices like SSL pinning and secure storage options, but I’m looking for comprehensive strategies.

How should I tackle the storage of sensitive user data? I understand that AsyncStorage might not be the best choice for this. What alternatives have you found to be effective?

Have any of you implemented security monitoring solutions or runtime application self-protection (RASP)? If so, how did it affect your development process and user experience?

What tools or methods do you use to assess the security of third-party libraries? I'm aware that introducing insecure dependencies can lead to vulnerabilities.

Are there any compliance issues (like GDPR or other regulations) that I should be concerned about while developing this app?

As a newcomer to mobile development, I really appreciate your insights and advice! Thank you for your help.

Is React Native is better than the Flutter in security or vice-versa?

Any information is would really help me for the best security practices,

If I use native code than I can add that on in RN??

[cortinico]

This is not the right forum to ask those type of questions as this is the New Architecture working group. I'd suggest you ask on StackOverflow or other online forum