App Secure

App Secure is a continuous automated security service that finds vulnerabilities and data privacy issues within mobile (iOS and Android) applications. The service automatically discovers and downloads all the mobile applications associated with a customer’s publisher identity on the Apple App Store and Google Play Store.

These mobile applications scans operate on a daily basis within the Data Theorem Analyzer Engine to find vulnerabilities with an emphasis on priority one (P1) issues.

P1 issues are defined as:

  • Vulnerabilities that can be exploited by a remote attacker to extract data from the mobile application,
  • Technical blockers that allow Apple or Google to remove a mobile application from their respective stores, or
  • Security or privacy concerns that have caused reputational or brand damage to the app publisher.
The API Discover service:
  • Automates Static and Dynamic Analysis
  • Discovers Dynamic Run-time Security Flaws
  • Alerts on newly discovered P1 issues and Store Blockers
  • Provides Secure Code Samples and Recommendations
  • Identifies Third-party SDKs Vulnerabilities
  • Inspects Open Source Libraries for Insecure Code
  • Reports on compliance of PCI, GDPR, HIPAA, FTC, and more
  • Integrates with Bug Tracking Systems e.g. JIRA, Bugzilla, etc.
  • Integrates with Software Build Systems e.g. Jenkins, HockeyApp, etc.
The Proactive Hardening
(App Protection) Guidelines:
  • Protect against SSL/TLS Man-in-the-Middle Attacks
  • Protect against 3rd party keyboard loggers
  • Encrypt Data Storage for the App
  • Help Remove Malware
  • Provides up to 25 additional security measures
Benefits

Customers benefit from accelerating and automating application security testing directly into the DevOps and Agile development cycles. This service allows for product and IT security teams to be a valued partner to help developers build safer and more secure mobile apps.

Ready for a closer look?

 

Modern AppSec for the Entertainment and DevOps Leader

Data Theorem helped Netflix identify and close 62 security issues and address 24 regulatory compliance issues all before releasing them to the public app stores.