Before and during operation──a diagnostic service for safely evolving smartphone applications.
Ranryu's "Smartphone App Vulnerability Diagnosis Service" goes beyond mere tool diagnostics by combining static analysis, dynamic analysis, and manual diagnosis by security engineers to accurately detect vulnerabilities unique to mobile apps, such as deficiencies in API communication and improper data storage. Furthermore, after the diagnosis, we provide improvement proposals, reporting sessions, re-diagnosis, and ongoing monitoring, offering reliable and effective security measures. ■ Features and PR Points - Peace of mind from public certification: A service provided by a company registered with the Ministry of Economy, Trade and Industry and IPA. - Three flexible plans to choose from: From cost-focused options to thorough diagnostics. - Diagnosis items specific to mobile: Focused attention on API authentication and authorization deficiencies, data storage issues, session management, and more. - Detailed reports leading to improvements: Evaluation based on OWASP Mobile Top 10 and IPA standards, along with correction proposals. - Site seal provision: Visualizes that diagnostics have been conducted, appealing to users and business partners for trust. - Regular diagnosis packages: Continuous improvement of app security with 2 to 4 diagnoses and re-diagnoses per year.
Inquire About This Product
basic information
■Plan Overview (1) Quick Scan Plan - Simple diagnosis focused on static analysis - Understand major risks in a short period while keeping costs down - Report provided in as little as 3 business days (subject to change based on the number of items diagnosed) (2) Standard Scan Plan (Recommended) - Standard plan combining static and dynamic analysis - Focused diagnosis on application-specific risks such as data storage, communication, and authentication/authorization deficiencies - Detailed report plus 30 days of QA support included (3) Advanced Scan Plan - Most diagnostic items and deepest analysis - Covers advanced aspects such as reverse compilation and reverse engineering risks - Ideal for strengthening security before audits or external releases - Comprehensive support including improvement proposals, reporting sessions, and re-diagnosis ■System - Qualified engineers are in charge, with a quality control department conducting double-checks - A reliable system not only meeting the Ministry of Economy, Trade and Industry standards but also certified as ISO/IEC 27001 (ISMS) compliant.
Price range
Delivery Time
Applications/Examples of results
Smartphone app vulnerability assessments are utilized by many companies in the following situations: - Security checks before app release - Pre-release assessments for apps that include API integration and cloud integration features - Inspections for specific functions or certain versions during development - Third-party evaluations during the maintenance and updates of ISMS or privacy marks - Impact assessments and preventive measures following security incidents - Assessment requests through SIers or app development companies (safety checks before final delivery)
Company information
We are an independent system integrator that provides integration services such as system development and infrastructure construction to customers of various sizes and industries. We offer security solution services, including system vulnerability assessment services. Our team of highly skilled engineers, with extensive experience and difficult licenses both domestically and internationally, will support you. Additionally, we regularly collect and analyze incident information and new vulnerabilities, reflecting this in our services. Please feel free to contact us for inquiries or consultations regarding any services or challenges you may have.