Skip to content

OWASP Mobile Application Security Verification Standard v1.1

Compare
Choose a tag to compare
@sushi2k sushi2k released this 14 Jul 06:16
· 2183 commits to master since this release

The following changes are part of release 1.1:

  • Requirement 2.6 "The clipboard is deactivated on text fields that may contain sensitive data." was removed. See also Issue #117.
  • Requirement 2.2 "No sensitive data should be stored outside of the app container or system credential storage facilities." was added.
  • Requirement 2.1 was reworded to "System credential storage facilities are used appropriately to store sensitive data, such as PII, user credentials or cryptographic keys.".