We care about users. Whenever users download your app, they trust you with their data and they expect that you’ll protect it. That’s why we worked with Google to create a security assessment process based on OWASP MASVS Level One - to help you show your users that you value their trust.
How it works
OWASP MASVS
An open-source industry standard for mobile application security
OWASP MSTG
A comprehensive handbook for mobile application testing based on MASVS
Leviathan Security
An experienced team of security consultants delivering impactful security results
about masa
Analyzing security posture
Regular security testing identifies key security patterns and strengthens application defenses
Increasing consumer confidence
Build a long-term trusting relationship with your clients and users, providing transparency and securing their data.
Architecture, Design and Threat Modeling Requirements
Data Storage and Privacy Requirements
Cryptography Requirements
Authentication and Session Management Requirements
Network Communication Requirements
Platform Interaction Requirements
Code Quality and Build Setting Requirements
The MASA framework uses the OWASP Mobile Application Security Verification Standard (MASVS), considered a gold standard in data security and privacy. The assessment is performed across seven categories of MASVS Level 1, covering each angle of the app's functionality.
Why us?
The MASA framework uses the OWASP Mobile Application Security Verification Standard (MASVS), considered a gold standard in data security and privacy. The assessment is performed across 7 categories of the Level 1 MASVS, covering each angle of the app's functionality.
Official App Defense Alliance partner
Leviathan is an official partner of App Defense Alliance, focusing on the safety of the Google Play Store and the broader app ecosystem.
Industry leader
Founded in 2006, Leviathan Security Group combines more than 16 years of experience with a drive for innovation.
Proven track record
Leviathan's team consists of experienced professionals, guaranteeing our clients the highest quality of service.
Showcase your security posture by completing MASA and receiving an independent security review badge in the Data safety section of Google Play. Choose your plan and get started with MASA
• Start an assessment within 48 hours
• 1 round of retest
• Start an assessment within 10 days
• 1 round of retest
• Start an assessment within 3 month period
• 1 round of retest
We have built an easy to use and convenient portal to make the MASA verification as smooth and convenient as possible. Follow the link below to register and get started.
Information about your Google Play developer account
Information about the application to test:
• Application and package names
• A test account for us to sign-in into your application, if it has login functionality
• APK file of the application, if it is not in Google Play Store
FAQ
Regular security testing can ensure that application controls are not vulnerable and user data is protected. Completing the assessment will allow developers to showcase this within Google Play and build trust with users.
Users will be provided transparent methodology and the assurance that the application meets a security baseline.
Any app.
The scope includes a general overview of all communication streams, authentication and client-side controls.
1 year with a yearly re-certification
Level 1 MASVS requirements. For more information visit Github here.
Most application assessments will cost $2-3K, depending on scope and complexity.
Reach out to Leviathan Security Group to schedule your assessment. Contact us through email masa@leviathansecurity.com
Get in Touch
Go ahead and get started through our portal, but if you have any questions about MASA, feel free to reach out through the form below, or email us directly: masa@leviathansecurity.com