2. 10 Critical Activities to Test Security of Mobile Applications
Is your Mobile App Secure? Read this Slideshare for 10 critical activities to test security of Mobile App!
Find out more..
3. 10 Critical Activities to Test Security of Mobile Applications
Lets first understand the Mobile Security Testing Process:
• Here are three basic steps suggested by experts in the field that must be
performed to achieve the desired objective:
Intelligence Gathering (gather as much as possible information about the app)
Threat Modelling (identify threats for the app – specific or prepared)
Vulnerability Analysis (identify vulnerabilities in the app with the previous created test cases using
Dynamic methods (Passive network monitoring and analyzing), Runtime analysis (analyzing the
communicating process for internal components (Android: Intents; iOS: objc_msgSend calls), and
Forensic methods (Timeline analysis)
4. 10 Critical Activities to Test Security of Mobile Applications
10 critical activities to be performed to make apps secure:
Automated security testing of mobile applications for multiple mobile devices across multiple platforms over diverse networks
Use of a cloud-based mobile Testing Lab that enables uploading locations or the actual apps themselves for testing
Performance of a huge variety of automated security tests for identifying embedded spywares, viruses, Trojans, data privacy, data leakage,
unsolicited network connections, etc.
Dynamic analyses and testing of apps in labs providing the required environment to verify security issues such as insecure file system,
insecure data transmission, unsafe data storage, privilege access violations, etc.
Analyses of results for each mobile application.
Assessment of automated code that helps IT teams secure mobile apps in agile-based environments.
Inspection of all features of the apps in real-time in controlled environments, and comparison of the results against a plethora of known
applications.
Assessment of the apps using binary static analysis that expose malicious capabilities and vulnerabilities such as leakage of information.
Assessment of whether or not an app has been built according to the peculiar demands of compliance in your industry, as it is vital to follow
the right standards for regulations and mandates.
Last – but definitely very important – keep checking and testing for the new security threats that keep surfacing ever so often.
5. Read More at: http://bit.ly/1oJ3log
10 Critical Activities to Test Security of Mobile Applications
Are your performing these 10 critical activities?