How Secure is Your DevOps Infrastructure?

DevSecOps
DevSecOps

Your business might already enjoy the benefits of a DevOps strategy – but has it evolved its approach to security?

Everyone knows that DevOps is about breaking down the silos between engineering and operations teams to shorten feedback loop and achieve continuous software delivery. With a DevOps mindset, one can expect benefits such as increased deployment speed, reduced complexity and a more stable operating environment.

Read more

How Testdroid Makes Mobile Game Developers Lives Easier

Many things make a difference when mobile gamers select which game they download from app market. Naturally, the reputation of any game developer is important, but by far more important factor for the maximal exposure for hundreds of millions of users are those user ratings and comments given in Google Play or App Store.  Those either put the game in front of those downloaders – or not.

Read more

What Heartbleed bug means to App Developers? Testdroid has you covered!

Dear Testdroiders,

You’ve probably read about serious vulnerability in the popular OpenSSL cryptographic software library – a.k.a. Heartbleed Bug. This weakness allows stealing the information protected, under normal conditions, by the SSL/TLS encryption used to secure the Internet. As long as the vulnerable version of OpenSSL is in use it can be abused.

Earlier last year, we announced a Testdroid product integration with Codenomicon’s – the team that actually found this bug – Appcheck that allows scanning the mobile app and listing all known vulnerabilities in it.

Read more

Best Practice #8: Test Security of Your App to Mitigate the Liability and Threats

This is surely a tough question, but how do you test against security threats you don’t know exist in your mobile app? Testing for something that you don’t know about sounds impossible, but luckily there are lots of things to do with today’s tools that can expose those threats and mitigate your burden. Those zero-day attacks – as named after the fact that vulnerability is there on “day zero” of its awareness – do happen and are the reality for today’s mobile apps. And you need to defend yourself – and especially your app – against those!

Read more

Testdroid Brings Security and Vulnerability Testing for Android Developers

Dear Testdroiders,

We’re so excited to introduce you the new Testdroid service for security and vulnerability testing – the integration of Testdroid Cloud with Codenomicon security suite. This service will work now with Android applications, but soon we’ll provided it to iOS apps as well. If you are looking what your app is made of – something that you probably didn’t know about your app – try it out and you’ll be surprised!

Majority of today’s applications consist largely of third-party code/libraries and application-specific glue to hold everything together. This is a prudent and well-accepted development practice that offloads the task of developing code for non-core functions of the application. Each piece of third-party code has an associated license whose terms can affect the distribution and licensing of your application.

Read more