The overall goal of the OWASP MASVS is to offer a baseline for mobile application security (MASVS- L1), while also allowing for the inclusion of defense-in-depth measures (MASVS-L2) and protections against client-side threats (MASVS-R). The MASVS is meant to achieve the following:
-
Provide requirements for software architects and developers seeking to develop secure mobile applications;
-
Offer an industry standard that can be tested against in mobile app security reviews;
-
Clarify the role of software protection mechanisms in mobile security and provide requirements to verify their effectiveness;
-
Provide specific recommendations as to what level of security is recommended for different use-cases.
Comments
Article is closed for comments.