iViZ Launches The Most Comprehensive Mobile Application Security Testing as a Service

Top Quote We are excited to announce the launch of mobile application security testing. iViZ shall provide the most comprehensive mobile application security testing by combining SAST, DAST and manual validation. End Quote
  • (1888PressRelease) June 23, 2013 - The solution is aimed to provide zero false positive and business logic testing covering most of the WASC v2 threat classes. Due to the increased sophistication of mobile platforms and the proliferation of mobile applications, an organization's mobile infrastructure represents yet another attack surface on an enterprise network. iViZ distinguishes itself in this space through its active research in mobile application security and an unique approach of threat surface analysis.

    The Key Highlights of our solution are:

    Combination of SAST and DAST
    Zero False Positive Guarantee
    Business Logic Testing
    Top 10 OWASP Mobile Application Threats
    How does our solution work?

    iViZ's mobile application test involves high level phases of Penetration Testing Process. The test involves 2 primary components:

    Client Side Testing
    Server Side Testing

    Client side Testing

    iViZ begins the assessment by evaluating data protection controls on the client device. In particular, we examine where and how the application manages sensitive information, whether the application is properly utilizing native APIs for features like key stores, and whether dangerous client artifacts such as user credentials, personal information, and/or any other sensitive application data are unintentionally or insecurely stored on the phone. As part of this analysis, consultants will also examine memory to ensure sensitive data is properly erased by the application.

    Read the completed blog here:

  • FB Icon Twitter Icon In-Icon
Contact Information