Compliance
NIST SP 800-163 — Vetting the Security of Mobile Applications
NIST (USA)
800-163 sets out how organizations vet mobile apps. Appsolid strengthens a vetted app's resistance to reversing, tampering and runtime threats, and provides published validation evidence.
Note: This page is a mapping for orientation — not a claim of certification or verification. Secure coding and server-side controls remain your responsibility. Appsolid is an Android client-protection tool that supports some of these controls.
What this requires
App vetting includes static and dynamic analysis and assessment of resistance to reversing and tampering. Appsolid's protection and validation reports feed that assessment.
How Appsolid maps
Resistance to reversing & tampering
SupportedPacking, encryption, obfuscation and anti-tamper (maps to MASVS R-2/R-4).
Resistance to dynamic analysis
SupportedRASP anti-Frida, debugger and hooking detection (MASVS R-1/R-3).
Evidence for the vetting process
SupportedPer-build reports covering 102 devices, 1,800+ runs, 7-threat e2e and the red-team ceiling.
Your responsibility
- Formal assessment/certification through a qualified assessor.
- Server-side authentication/authorization, transport security (TLS) and API security.
- SDLC process — threat modeling, code review and vulnerability management.