OWASP MASVS Security Verification Standards

The overall goal of the OWASP MASVS is to offer a baseline for mobile application security (MASVS- L1), while also allowing for the inclusion of defense-in-depth measures (MASVS-L2) and protections against client-side threats (MASVS-R). The MASVS is meant to achieve the following:

  • Provide requirements for software architects and developers seeking to develop secure mobile applications;

  • Offer an industry standard that can be tested against in mobile app security reviews;

  • Clarify the role of software protection mechanisms in mobile security and provide requirements to verify their effectiveness;

  • Provide specific recommendations as to what level of security is recommended for different use-cases.




Article is closed for comments.