The National Institute of Standards and Technology (NIST) updated its Vetting the Security of Mobile Applications guidance document with a new revision. The revision explores resources that can be used to inform mobile application security requirements for organizations.
The new revision also details and refines the original vetting model by better defining the inputs and outputs of each step in the application vetting process, as well as detailing how the process can integrate into the general security of an organization.
Lastly, the revision updates the exploration of the current threat landscape that mobile applications face, while aligning itself with current guidelines and recommendations made by other Federal agencies.
The original Vetting the Security of Mobile Applications guidance document was introduced in January 2015 and detailed the processes that organizations evaluate for mobile applications and cybersecurity vulnerabilities. It also described how to undertake testing for the applications.