NIST Guidance Addresses Vetting the Security of Mobile Applications

​The U.S. Department of Commerce's National Institute of Standards and Technology (NIST) has published guidance addressing how organizations can ensure the security of mobile applications used by employees for work-related purposes. Vetting the Security of Mobile Applications was developed to help organizations (1) understand the process for vetting the security of mobile applications, (2) plan for the implementation of an application vetting process, (3) develop application security requirements, (4) understand the types of application vulnerabilities and the testing methods used to detect those vulnerabilities, and (5) determine if an application is acceptable for deployment on the organization's mobile devices.