Mobile Application Security Assessment
Mobile Application eCybersec has assessed mobile applications for a variety of industries, including financial services and healthcare, and has conducted numerous assessments of custom applications running on Apple iOS, Android, Blackberry and Windows Mobile environments. These applications bring a unique challenge to information security in that a single application may consist of web services, embedded browsers and native code components. There are risks specific to applications using mobile devices that are different from web application environments.
eCybersec mobile security assessment methodology does not solely focus on the application running on the device, but instead looks at the system as a whole. This includes both third party and enterprise web services used by the application as well as other connected resources that might have an impact on the security of the system.
Our Assessment Methodology Approach
eCybersec uses an approach combining mobile application security assessment techniques with assessment techniques specific to mobile computing environments. eCybersec assessment methodology is based on emerging industry standards, such as those defined by the Open Web Application Security Project (OWASP), which include the OWASP Top 10 and Application Security Verification Standard (ASVS). These capture the major classes of vulnerabilities and weaknesses that might exist in systems incorporating mobile applications.
Additionally, we examines security risks and usability weaknesses that are common in a mobile computing environment, including, but not limited to: