Skip to main content
U.S. flag

An official website of the United States government

Dot gov

The .gov means it’s official.
Federal government websites often end in .gov or .mil. Before sharing sensitive information, make sure you’re on a federal government site.


The site is secure.
The https:// ensures that you are connecting to the official website and that any information you provide is encrypted and transmitted securely.

Vetting the Security of Mobile Applications



Michael A. Ogata, Josh Franklin, Jeffrey M. Voas, Vincent Sritapan, Stephen Quirolgico


Mobile applications are an integral part of our everyday personal and professional lives. As both public and private organizations rely more on mobile applications, ensuring that they are reasonably free from vulnerabilities and defects becomes paramount. This paper outlines and details a mobile application vetting process. This process can be used to ensure that mobile applications conform to an organization's security requirements and are reasonably free from vulnerabilities.
Special Publication (NIST SP) - 800-163 Rev. 1
Report Number
800-163 Rev. 1


app vetting, app vetting system, malware, mobile applications, mobile security, NIAP, security requirements, software assurance, software vulnerabilities, software testing
Created April 19, 2019