• DocumentCode
    254114
  • Title

    App vetting systems: Issues and challenges

  • Author

    Quirolgico, Steve

  • Author_Institution
    Computer Security Division, Information Technology Laboratory, National Institute of Standards and Technology
  • fYear
    2014
  • fDate
    22-22 May 2014
  • Firstpage
    1
  • Lastpage
    13
  • Abstract
    • App vetting is the process of approving or rejecting an app prior to deployment on a mobile device. • The decision to approve or reject an app is based on the organization´s security requirements and the type and severity of security vulnerabilities found in the app. • Security vulnerabilities including Cross Site Scripting (XSS), information leakage, authentication and authorization, session management, and SQL injection can be exploited to steal information or control a device.
  • Keywords
    Computer security; Information technology; Laboratories; Mobile communication; Mobile handsets; NIST;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    IT Professional Conference (IT Pro), 2014
  • Conference_Location
    Gaithersburg, MD, USA
  • Type

    conf

  • DOI
    10.1109/ITPRO.2014.7029287
  • Filename
    7029287
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=254114