Nist Mobile Application Security Checklist

As both public and private organizations rely more on mobile applications securing these mobile applications from vulnerabilities and defects becomes more important.

Nist mobile application security checklist.

The national checklist program ncp defined by the nist sp 800 70 is the u s. Mobile applications are an integral part of our everyday personal and professional lives. This publication is intended for users and developers of it product security configuration checklists. National checklist program repository.

Ncp provides metadata and links to checklists of various formats including. This process can be used to ensure that mobile applications. Containers provide a portable reusable and automatable way to package and run applications. Corporation paul black and irena bojanova of nist the department of homeland security dhs and the department of justice doj.

Mobile applications arean integ ral part of our everyday personal and professional lives. This paper outlines and paramount details a mobile application vetting process. Mobile applications have become an integral part of our everyday personal and professional lives. For checklist users this document gives an overview of the nist checklist program explains how to retrieve checklists from nist s repository and provides general information about threat discussions and baseline.

Nist maintains the national checklist repository which is a publicly available resource that contains information on a variety of security configuration checklists for specific it products or categories of it products a security configuration checklist also called a lockdown hardening guide or benchmark is a series of instructions or procedures for configuring an it product to a. Although the solutions to it security are complex one simple yet effective tool is the security configuration checklist nist writes. Government repository of publicly available security checklists or benchmarks that provide detailed low level guidance on setting the security configuration of operating systems and applications. Finally special thanks to the defense advanced research projects agency darpa transformative applications transapps program for funding nist research in mobile app security vetting.

This paper outlines and details a mobile application vetting process. This paper outlines and details a mobile application vetting process. Application container technologies also known as containers are a form of operating system virtualization combined with application software packaging. As both public and private organizations rely more on mobile applications ensuring that are they reasonably freefrom vulnerabilities and defects becomes.

As both public and private organizations rely more on mobile applications ensuring that they are reasonably free from vulnerabilities and defects becomes paramount.