What is the best way to secure an application when working with application development companies?

M

MimoKrokk2018-06-08 10:41:51

Mobile development

MimoKrokk, 2018-06-08 10:41:51

What is the best way to ensure the protection of the application in terms of information security if the development is carried out by a mobile application development company? Do such companies do vulnerability testing? If not, at what stage of development is it better to use the services for checking for vulnerabilities in a narrowly focused company and how much will it cost on average and is it necessary to pay extra for fixing vulnerabilities?

Reply

Answer the question

In order to leave comments, you need to log in

2 answer(s)

D

dmshar, 2018-06-08
@dmshar

1. Do these companies do vulnerability testing? - In theory, it depends on the seriousness of the company. And the money that you are willing to invest in development.
2. At what stage of development is it better to use services for checking for vulnerabilities - Security issues should be taken care of from the moment you decide to start development, i.e. from the moment of drawing up the TOR for development.
3. Vulnerability testing services in a narrowly focused company - It is always a good idea to do an additional check with an independent auditor.
4. how much it will cost on average - A serious check of a serious application - a lot. How can you answer "on average" without even understanding what you have decided to develop there.
5. Do I need to pay extra for fixing vulnerabilities? - How to negotiate with the developer.

E

Evgeny Koryakin, 2018-06-08
@Incorrectfree

If the TOR initially didn’t say anything about safety, then yes, you will have to pay extra.
The guys from the Deep Web will tell you the best about vulnerabilities, you can find them on any hacking site.