Vetting the Security of Mobile Applications

Published: January 26, 2015


Stephen Quirolgico, Jeffrey M. Voas, Tom T. Karygiannis, Christoph Michael, Karen Scarfone


The purpose of this document is to help organizations (1) understand the process for vetting the security of mobile applications, (2) plan for the implementation of an app vetting process, (3) develop app security requirements, (4) understand the types of app vulnerabilities and the testing methods used to detect those vulnerabilities, and (5) determine if an app is acceptable for deployment on the organization's mobile devices.
Citation: Special Publication (NIST SP) - 800-163
Report Number:
Pub Type: NIST Pubs


app vetting, apps, malware, mobile devices, security requirements, security vetting, smartphones, software assurance, software security, software testing, software vetting
Created January 26, 2015, Updated November 10, 2018