Device level
The majority of security implementation is needed at the device level. This is sub-categorized into two more levels:
- Platform level: In this level, developers must consider all the platform-specific risks and know the countermeasures to protect the app
- Application level: Protection at the app level is the primary purpose of developers in order to provide confidentiality, integrity and availability of information to the user.
The following screenshot provides details of the device-level protection along with the mapping with OWASP mobile top ten risks that we discussed in Chapter 1, The Mobile Application Security Landscape:
Platform (OS) ...
Get Mobile Application Penetration Testing now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
