Mobile Application Security

The objective of this paper is to help the developer community across organizations apply necessary security mechanisms while building their mobile applications.

The exponential growth in the number of mobile devices and solutions has led to a vulnerability in mobile applications being more common especially for applications that deal with personal and sensitive data transactions. Attackers target these applications to steal sensitive user data. Although many mobile applications do provide high-security mechanisms, there is still room to provide improved security.

Key factors driving mobile application vulnerability include the following:

  • Sensitive information storage in mobile
  • The hard-coded values
  • Application binary reversing/decompiling
  • Sensitive data transport between mobile application and server