OWASP Mobile Application Security Verification Standard v1.1
The following changes are part of release 1.1:
- Requirement 2.6 "The clipboard is deactivated on text fields that may contain sensitive data." was removed. See also Issue #117.
- Requirement 2.2 "No sensitive data should be stored outside of the app container or system credential storage facilities." was added.
- Requirement 2.1 was reworded to "System credential storage facilities are used appropriately to store sensitive data, such as PII, user credentials or cryptographic keys.".