zScan helps mobile app developers identify reputation and financial risks by automatically identifying privacy, security and compliance risks in the development process before apps are released to the public. While traditional code analysis tools assess the quality of a developer’s code overall, zScan’s binary analysis identifies risks an attacker could exploit in the app. Zimperium’s zScan:
zScan integrates directly into your development process without requiring your developers to change processes, implement any new code, or have to log into a separate system console. Once findings are discovered, zScan opens tickets in ticketing systems (like JIRA, Cloudbees Jenkins and TeamCity) to provide developers with detailed information and work packages necessary to address the risk. Once fixed, the information is synced back to zScan so security and compliance teams can verify it.
Additionally, zScan’s “Build Compare” capability quickly shows whether risks are trending up or down in each subsequent version. The version comparisons enable organizations to measure compliance progress and to deliver more resilient mobile apps.
Zimperium’s zScan helps organizations overcome challenges and consistently produce mobile apps with fewer privacy, security and compliance risks by:
“Security and risk management leaders must take due care in protecting their application clients to avoid turning a promising software design trend into a security failure.”
– Gartner’s Market Guide for In-App Protection Report (July 3, 2019; Dionisio Zumerle and Manjunath Bhat)
Copyright © 2020 Ameritec All Rights Reserved