Compliance
OWASP MASVS-RESILIENCE (the R group)
OWASP Mobile Project
MASVS-RESILIENCE is the control group for resistance to reverse engineering and tampering. It's central for finance, gaming and other apps with high client-side threat — and it's where Appsolid's protection maps most directly.
Note: This page is a mapping for orientation — not a claim of certification or verification. Secure coding and server-side controls remain your responsibility. Appsolid is an Android client-protection tool that supports some of these controls.
What this requires
R-1 platform/environment integrity, R-2 anti-tampering & integrity, R-3 dynamic-analysis resistance, R-4 static-analysis resistance. Appsolid supports all four with verified capabilities.
How Appsolid maps
R-4 · Static-analysis & reverse-engineering resistance
SupportedIn-memory packing + AES-256-GCM encryption + O-MVLL native obfuscation (static extraction 4 of 8,036 classes).
R-2 · Anti-tamper & integrity verification
SupportedPayload cryptographic authentication + self-checksum — decryption fails on tampering.
R-3 · Dynamic-analysis & instrumentation resistance
SupportedAlways-on anti-Frida, inline-hook and debugger detection → self-termination; key entanglement means hooked apps never load the original code.
R-1 · Platform & environment integrity
SupportedRooting, bootloader tampering, emulator and ADB-debugging detection (verified live e2e).
Your responsibility
- Secure coding, secrets management and secure data storage.
- Server-side authentication/authorization, transport security (TLS) and API security.
- Formal assessment/certification through a qualified assessor.