Skip to main content
U.S. flag

An official website of the United States government

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Vetting the Security of Mobile Applications

Published

Author(s)

Stephen Quirolgico, Jeffrey M. Voas, Tom T. Karygiannis, Christoph Michael, Karen Scarfone

Abstract

The purpose of this document is to help organizations (1) understand the process for vetting the security of mobile applications, (2) plan for the implementation of an app vetting process, (3) develop app security requirements, (4) understand the types of app vulnerabilities and the testing methods used to detect those vulnerabilities, and (5) determine if an app is acceptable for deployment on the organization's mobile devices.
Citation
Special Publication (NIST SP) - 800-163
Report Number
800-163

Keywords

app vetting, apps, malware, mobile devices, security requirements, security vetting, smartphones, software assurance, software security, software testing, software vetting

Citation

Quirolgico, S. , Voas, J. , Karygiannis, T. , Michael, C. and Scarfone, K. (2015), Vetting the Security of Mobile Applications, Special Publication (NIST SP), National Institute of Standards and Technology, Gaithersburg, MD, [online], https://doi.org/10.6028/NIST.SP.800-163 (Accessed October 7, 2024)

Issues

If you have any questions about this publication or are having problems accessing it, please contact reflib@nist.gov.

Created January 26, 2015, Updated May 4, 2021