Gandalf_The_Grey
Level 83
Thread author
Verified
Honorary Member
Top Poster
Content Creator
Well-known
- Apr 24, 2016
- 7,364
Google Play, Android's official app store, is now tagging VPN apps with an 'independent security reviews' badge if they conducted an independent security audit of their software and platform.
Specifically, that standard is MASA (Mobile App Security Assessment), which was introduced last year as an initiative of the App Defense Alliance (ADA) to define a concrete set of requirements for mobile app security.
The requirements concern data storage and data privacy practices, cryptography, authentication and session management, network communication, platform interaction, and code quality.
Starting with VPN apps, which Google considers critical for user privacy and security due to handling sensitive data, the Play Store will display the "Independent security review" badge in the Data Safety Section.
This badge indicates that the apps' compliance with the MASA standard has been independently verified, enhancing transparency and bolstering user trust.
As VPN providers are used to provide anonymity while browsing the web, many make claims that they do not keep any logs and do not expose the user's actual IP address, whether that be through bugs or other reasons.
To prove these claims, some VPN providers perform third-party audits that examine source code, server configurations, and attempt to find bugs that may make users less secure while using the app.
For this new Google Play tag, VPN vendors are also required to perform the MASA audit from an approved cybersecurity partner.
The VPN vendors that have opted to go through the MASA security audit and currently display the new Google Play badge are NordVPN, Google One, and ExpressVPN.
Google Play adds security audit badges for Android VPN apps
Google Play, Android's official app store, is now tagging VPN apps with an 'independent security reviews' badge if they conducted an independent security audit of their software and platform.
www.bleepingcomputer.com