The Liasoft Appraisal for Security in Apps and Software ( LiGSA ) is a private appraisal commissioned by us.
How does the audit work?
Using reverse engineering, we subject your application to a static analysis. Subsequently, we carry out a runtime analysis in order to determine specific vulnerabilities and attack vectors. If your application requires a user login, we need a trial account to perform a full analysis.
What is checked in the static analysis?
- Incorrect processing of security-relevant and sensitive data,
- Serious security holes,
- Potential security holes,
- Ways to attack (Man-In-The-Middle, Hooking, Phishing)
What is checked in a runtime analysis?
During a runtime analysis, we specifically attack vulnerabilities found in the static analysis to show you all security vulnerabilities.
You will receive a well-documented report and a guide to the removal of critical issues. The safety of your application is assessed. If you have an Acceptable Security Index (No Fatal Vulnerabilities or Incorrect Processing of Security and Sensitive Data) you will be allowed to use the LiGSA Seal . Our seal stands for maximum security in apps and software and also suggests this to your customers and users of the application.
- Extensive security analysis of your app (10-30 pages)
- security advisories (1 page)
- Developer guide to fixing security issues for Android and iOS (30 pages!)
- LiGSA certificate (with good safety rating)
- Unbeatable price
After ordering a LiGSA we need your application as Android .apk file and / or iOS .ipa file. Either get us a download or we can get the application from Google Play Store or Apple App Store. After receipt of payment and transmission of your application, we will prepare the report. The complete analysis and preparation of the report takes four working days.
You will receive the report by e-mail or on request by post.