One Article Review
| Source |  GoogleSec |
|---|---|
| Identifiant | 8294655 |
| Date de publication | 2022-12-15 20:51:24 (vue: 2022-12-25 07:07:17) |
| Titre | Expanding the App Defense Alliance |
| Texte | Posted by Brooke Davis, Android Security and Privacy Team The App Defense Alliance launched in 2019 with a mission to protect Android users from bad apps through shared intelligence and coordinated detection between alliance partners. Earlier this year, the App Defense Alliance expanded to include new initiatives outside of malware detection and is now the home for several industry-led collaborations including Malware Mitigation, MASA (Mobile App Security Assessment) & CASA (Cloud App Security Assessment). With a new dedicated landing page at appdefensealliance.dev, the ADA has an expanded mission to protect Android users by removing threats while improving app quality across the ecosystem. Let's walk through some of the latest program updates from the past year, including the addition of new ADA members. Malware MitigationTogether, with the founding ADA members - Google, ESET, Lookout, and Zimperium, the alliance has been able to reduce the risk of app-based malware and better protect Android users. These partners have access to mobile apps as they are being submitted to the Google Play Store and scan thousands of apps daily, acting as another, vital set of eyes prior to an app going live on Play. Knowledge sharing and industry collaboration are important aspects in securing the world from attacks and that's why we're continuing to invest in the program. New ADA MembersWe're excited to see the ADA expand with the additions of McAfee and Trend Micro. Both McAfee and Trend Micro are leaders in the antivirus space and we look forward to their contributions to the program. Mobile App Security Assessment (MASA)With consumers spending four to five hours per day in mobile apps, ensuring the safety of these services is more important than ever. According to Data.ai, the pandemic accelerated existing mobile habits - with app categories like finance growing 25% YoY and users spending over 100 billion hours in shopping apps. That's why the ADA introduced MASA (Mobile App Security Assessment), which allows developers to have their apps independently validated against the Mobile Application Security Verification Standard (MASVS standard) under the OWASP Mobile Application Security project. The project's mission is to “Define the industry standard for mobile application security,” and has been used by both public and private sector organizations as a form of industry best practices when it comes to mobile application security. Developers can work directly with an ADA Authorized Lab to have their apps evaluated against a set of MASVS L1 requirements. Once successful, the app's validation is listed in the recently launched App Validation Directory, which provides users a single place to view all app validations. The Directory also allows users to access more assessment details including validation date, test lab, and a report showing all test steps and requirements. The Directory will be updated over time with new features and search functionality to make it more user friendly. The Google Play Store is the first commercial app store to recognize and display a badge for any app that has completed an independent security review through ADA MASA. The badge is displayed within an app's respective |
| Envoyé | Oui |
| Condensat | 100 2019 able about academy accelerated accelerator access according across acting ada addition additions against all alliance allows also amazing android another antivirus any app appdefensealliance application applications apps are around aspects assessment assurance asvs attacks authorized automated available average bad badge base based becomes been being best beta better between billion both breach brooke can casa categories certifications check checks cloud collaboration collaborations comes commercial community completed completing complex connects consistent consumers continued continues continuing contributions coordinated cost course critical current daily data date davis day dedicated defense depending details detection dev developer developers directly directory display displayed diverse earlier early ecosystem either eliminate ensuring eset evaluated ever evolve excited existing expand expanded expanding expansion eyes features finance first five focusing form forth forward founding four framework frameworks friendly from functionality further get going google grow growing guidance habits harden has have help higher highly home hours identified important improving include including increasingly independent independently industry infrastructure initiatives integrations intelligence interactive interest introduced invest issues knowledge lab landing large latest launched leaders leading learn led let levels leverages like listed live look lookout low lowering make malware many mapped masa masvs may mcafee members memberswe micro minimizes mission mitigation mitigationtogether mobile month more multiple new next now once organizations out outside outstanding over owasp page pandemic partners past paypal per perform photos place plans play posted practices present prior privacy private proactively processes program progress project protect provide provides public quality recent recently recognize reduce redundant removing report required requirements resolved respective review risk roblox safety scan search section sector securing security see seen self sensitive services set several shared sharing shopping showing single software some space spending standard started steps store strong submitted success successful such supporting systems team test testing than that there these thousands threats threema through time today trend two uber under updated updates use used user users using valid validated validation validations verification view vital walk when which why will within work workflow world year youtube yoy zimperium “define |
| Tags | Malware Guideline Prediction |
| Stories | Uber |
| Notes | ★★ |
| Move | 
|
L'article ne semble pas avoir été repris aprés sa publication.
L'article ne semble pas avoir été repris sur un précédent.