NowSecure ADA MASA
Android developers can drive more downloads and demonstrate safeguarding trust with an Independent Security Review in their Google Play™ Data safety section. NowSecure partnered with Google and the App Defense Alliance (ADA) to build the Mobile Application Security Assessment (MASA) and can complete the MASA validation as an ADA Authorized Lab.
Validate Mobile App Security and Privacy for Google Play™
Google Play hosts nearly 3.5 million Android mobile apps and counting that have been downloaded by billions of users. To increase transparency and help users make informed choices about the mobile apps they install, Google recently began requiring mobile app developers to disclose how their apps handle user data in the Google Play Data safety section.
Google Play Data Safety Requirements
The Data safety section on the Google Play is a simple way to show what user data the app collects or shares and showcase key privacy and security practices. This section is designed to help users make more informed decisions about which apps to install. As of July 20, 2022, all mobile app developers who submit new mobile apps or update existing mobile apps must declare how they collect, share, and secure data. After August 22, 2022, non-compliant apps may face additional enforcement actions like the removal of the app store listing from Google Play.
ADA MASA Independent Security Review
Google Play Data safety helps users decide which apps to trust. An optional independent security review enables Android developers to drive more downloads by reassuring users that their app meets an industry standard of security best practices. That independent review comes in the way of the App Defense Alliance (ADA) Mobile Application Security Assessment (MASA) which must be completed by an ADA Authorized Lab. The independent security review badge gives users confidence that apps have been validated by independent experts to be safe and secure.
The ADA MASA Framework
The ADA MASA is based on the Open Web Application Security Project (OWASP) Mobile Application Security Verification Standard (MASVS), a globally recognized standard for mobile application security. MASVS provides a set of baseline security criteria for developers. The first level, L1, outlines the basic security practices that all mobile apps should undergo. Experts from ADA Authorized Labs like NowSecure use the objective testing procedures outlined by the OWASP Mobile Security Testing Guide (MSTG) to evaluate Android apps against a set of MASVS L1 requirements that include Data Storage and Privacy, Cryptography, Authentication and Session Management, Network Communication, Platform Interaction, Code Quality and Build Settings
Benefits of ADA MASA Validation
ADA MASA validation benefits mobile app owners, developers, security analysts and users alike. Performing regular mobile app security testing helps developers identify and remediate key vulnerabilities, reduce risk and mitigate future liability. An ADA MASA independent security review demonstrates the app’s commitment to security and privacy, which in turn increases user trust and downloads. As an ADA Authorized Lab, NowSecure can guide you through the MASA certification to apply the highly desired independent security review badge to your app’s Data safety information. Our team will partner with you to assess your mobile app, deliver a detailed report and help developers fix any issues that are found, and process a retest so you can publish and benefit immediately. The independent security review MASA validation helps you gain user trust and drive more Google Play downloads.
Drive More Google Play Downloads
Get an Independent Security Review Badge with ADA MASA Validation