{"id":5723,"date":"2018-05-20T11:53:13","date_gmt":"2018-05-20T10:53:13","guid":{"rendered":"http:\/\/www.thetawelle.de\/?p=5723"},"modified":"2018-05-20T12:04:51","modified_gmt":"2018-05-20T11:04:51","slug":"mobile-app-security-requirements-and-verification","status":"publish","type":"post","link":"https:\/\/www.thetawelle.de\/?p=5723","title":{"rendered":"Mobile App Security Requirements and Verification"},"content":{"rendered":"<p><a href=\"\/wp-upload\/Masvs-sample-mini.jpg\"><img loading=\"lazy\" decoding=\"async\" src=\"\/wp-upload\/Masvs-sample-mini.jpg\" alt=\"\" width=\"200\" height=\"283\" class=\"alignright size-full wp-image-5725\" \/><\/a>Wer f\u00fcr mobile Ger\u00e4te (i.e. iPhone, iPad etc.) Software entwickelt, der sollte sich auch um die Sicherheit der App k\u00fcmmern.<\/p>\n<p>Das <a href=\"https:\/\/www.owasp.org\/index.php\/OWASP_Mobile_Security_Testing_Guide\"><strong>OWASP<\/strong>-Projekt<\/a> (Open Web Application Security Project) stellt hier beispielhaft viele Dokumente bereit, die einem zeigen, auf was man alles achten sollte.<\/p>\n<p><a href=\"\/wp-upload\/OWASP_Mobile_Logo.png\"><img loading=\"lazy\" decoding=\"async\" src=\"\/wp-upload\/OWASP_Mobile_Logo.png\" alt=\"\" width=\"400\" height=\"161\" class=\"alignright size-full wp-image-5731\" srcset=\"https:\/\/www.thetawelle.de\/wp-upload\/OWASP_Mobile_Logo.png 400w, https:\/\/www.thetawelle.de\/wp-upload\/OWASP_Mobile_Logo-300x121.png 300w\" sizes=\"auto, (max-width: 400px) 85vw, 400px\" \/><\/a><br clear=all>F\u00fcr Mobile gibt es einen gesonderten Bereich <a href=\"https:\/\/www.owasp.org\/index.php\/OWASP_Mobile_Security_Project\">OWASP Mobile Security Project<\/a>.<\/p>\n<p>Vor allem das Dokument (<a href=\"\/wp-upload\/OWASP_Mobile_AppSec_Verification_Standard_v1.0.pdf\">OWASP_Mobile_AppSec_Verification_Standard_v1.0.pdf<\/a>) zu den <code>Mobile Application Security Verification Standard (MASVS)<\/code> ist sehr sehr lesenswert.<\/p>\n<p>Eine praktische Checkliste f\u00fcr die erreichbaren Level (MASVS-1, MASVS-2, MASVS-2+R) gibt es als Excel Tabelle (<a href=\"\/wp-upload\/Mobile_App_Security_Checklist.xlsx\">Mobile_App_Security_Checklist.xls<\/a>).<\/p>\n<p><small><strong>Why do I blog this?<\/strong>Weil es sehr n\u00fctzlich ist. F\u00fcr die ganz Ungeduldigen&#8230; man kann es auch <a href=\"https:\/\/sushi2k.gitbooks.io\/the-owasp-mobile-security-testing-guide\/content\/0x03-Overview.html\">als Git-Book lesen<\/a>.<\/small><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Wer f\u00fcr mobile Ger\u00e4te (i.e. iPhone, iPad etc.) Software entwickelt, der sollte sich auch um die Sicherheit der App k\u00fcmmern. Das OWASP-Projekt (Open Web Application Security Project) stellt hier beispielhaft viele Dokumente bereit, die einem zeigen, auf was man alles achten sollte. F\u00fcr Mobile gibt es einen gesonderten Bereich OWASP Mobile Security Project. Vor allem &hellip; <a href=\"https:\/\/www.thetawelle.de\/?p=5723\" class=\"more-link\"><span class=\"screen-reader-text\">\u201eMobile App Security Requirements and Verification\u201c <\/span>weiterlesen<\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[17,88,85],"tags":[],"class_list":["post-5723","post","type-post","status-publish","format-standard","hentry","category-best-practice","category-coding","category-security"],"_links":{"self":[{"href":"https:\/\/www.thetawelle.de\/index.php?rest_route=\/wp\/v2\/posts\/5723","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.thetawelle.de\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.thetawelle.de\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.thetawelle.de\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.thetawelle.de\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=5723"}],"version-history":[{"count":0,"href":"https:\/\/www.thetawelle.de\/index.php?rest_route=\/wp\/v2\/posts\/5723\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.thetawelle.de\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=5723"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.thetawelle.de\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=5723"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.thetawelle.de\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=5723"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}