Skip to main content
        • Products

          Q-Scout

          Leading edge mobile device security delivering dynamic, actionable intelligence for fleet-wide protection applications

          Q-MAST

          Comprehensive testing for developers who build, use, and manage mobile applications

          Q-Vet

          Mobile app vetting for curated and enterprise managed app stores

        • Solutions by Want

          Mobile Application Security Testing

          Advanced analysis utilizing static, dynamic & interactive analysis of Android and iOS mobile applications

          BYOD

          Secure devices connecting to the enterprise network in the work and live anywhere world

          App Vetting

          Transparent and high-confidence results using pass/fail security evidence

          End Users

          Airtight digital security that empowers you to make informed decisions on what apps you do and do not give access to

          Regulatory Compliance

          Automated compliance testing for the latest privacy and security standards

        • Industries

          Federal Government

          Mobile security solutions for public sector needs across federal, state and local governments

          Finance

          Fintech application security solution for advanced mobile threats

        • Untitled Document

          All Resources

          Blogs

          The latest industry news in cybersecurity’s ever-evolving landscape

          Newsroom

          Press releases, news stories and media highlights from Quokka

          Webinars

          Videos and content where you can learn about the latest threats, trends and issues in cybersecurity

          Whitepapers

          Insights and helpful assets for exploring cybersecurity and digital security

        • Datasheets

          An in-depth description of Quokka solutions

          Technical Papers

          Deep dive into cybersecurity topics and technical papers discovered by Quokka

          Use Cases

          Detailed overview of how Quokka solutions solve real-world pain points

          Guides

          Best practices from our industry experts

          Partners

          Learn more about Quokka’s technology partners

        • Company

          Careers

          There are jobs - and then there is a career at Quokka

          Leadership

          Quokka’s global management team comprised of security experts and industry leaders

  • Support

Under the Promise of Early Success, CISA Expands its Beta Mobile App Vetting Service

Under the Promise of Early Success, CISA Expands its Beta Mobile App Vetting Service

Jim Sheire, Branch Chief for CISA’s Cybersecurity Shared Services Office | March 13, 2023

Jim Sheire, Branch Chief for CISA’s Cybersecurity Shared Services Office

March 13, 2023

Mobile devices are an integral part of our everyday operations, and their growing prevalence provides more than simple convenience within the federal space. Unfortunately, increased connectivity has also expanded the threat landscape, leaving the government vulnerable to bad applications (apps) that jeopardize the security of its systems.

That is why CISA is proud to expand access to the Mobile App Vetting (MAV) service. CISA granted MAV an Authorization to Operate on February 8th, 2023, acknowledging the service’s key role in combating a growing risk of mobile app vulnerabilities threatening Federal Civilian Executive Branch (FCEB) agencies. Moreover, it is available at no cost to the user.

While many agencies will get to experience MAV’s capabilities for the first time in the coming months, a handful of early adopters are already deeply aware of its utility. When Customs and Border Protection (CBP) needed an enhanced app-vetting capability to strengthen its mobile security in early 2022, it turned to MAV to meet its needs.

Currently, CBP uses MAV to vet its library of mobile apps for security concerns before deployment on the component’s pool of smartphones and tablets. A standout example of this is when CBP undertook vetting efforts for a third-party COVID-19 contact-tracing app. Here, MAV was able to detect several issues inherent to software’s iOS version. This discovery prompted CBP to cancel the app’s deployment, which consequently protected the security and integrity its mobile devices.

CBP’s Mobile Device Management and Engineering found great value in MAV’s prevention of poor coding. This protects government-furnished equipment (GFE) and the greater federal enterprise from unknowingly propagating vulnerabilities.

Now that MAV is available to the greater FCEB community, agencies interested in using a timesaving, standards-backed, and field-tested mobile app-vetting service should consider CPB’s experience and work with CISA to safeguard their GFE. Eighteen agencies currently use MAV to identify vulnerabilities, flaws, and risks throughout various mobile use cases, which has enabled these participants to make risk-based decisions before using government-developed or third-party apps (e.g., Google Play Store, Apple App Store).

For more information on the qualifications to receive one of MAV’s limited beta testing licenses, email [email protected]. Visit our MAV website for information about this beneficial shared service.

The original blog posted by CISA can be found here.

Leave a Reply

Close Menu