NIST Publishes Mobile App Security Recommendations

NIST Publishes Mobile App Security Recommendations

The National Institute of Standards and Technology (NIST) has released a new report titled “Vetting the Security of Mobile Applications.” The report urges enterprises to put apps through a “vetting” process that includes security testing before allowing employees to use them.

“This process is performed on an app after the app has been developed and released for distribution but prior to its deployment on an organization?s mobile device,” the NIST wrote. “An app vetting process acknowledges the concept that someone other than the software vendor is entitled to evaluate the software?s behavior, allowing organizations to evaluate software in the context of their own security policies, planned use, and risk tolerance.”

The report points out that the mobile development industry hasn’t always done a good job with security, and says that enterprises shouldn’t rely on app stores or other third parties to verify security. It details the types of vulnerabilities enterprise testers should look for as well as the kind of tests that can find them.

View article

Share the Post:
data observability

Data Observability Explained

Data is the lifeblood of any successful business, as it is the driving force behind critical decision-making, insight generation, and strategic development. However, due to its intricate nature, ensuring the

Heading photo, Metadata.

What is Metadata?

What is metadata? Well, It’s an odd concept to wrap your head around. Metadata is essentially the secondary layer of data that tracks details about the “regular” data. The regular