NT OBJECTives, Inc., a leading provider of innovative, automated and accurate web application security solutions, announced today the launch of NTOMobile On-Demand powered by NTOSpider, a new security service specifically designed for mobile application testing, including mobile client native code and back-end web services. It delivers an easy way for security teams to complete comprehensive mobile application security testing without requiring additional software or testers.
The rapid proliferation of mobile applications has created significant challenges for resource constrained IT web application security teams. These teams often lack the time, tools and expertise to conduct effective secure mobile application testing. According to a recent Gartner report, “Most enterprises are inexperienced in mobile application security. Security testing, if conducted at all, is often done casually — not rigorously — by developers who are mostly concerned with the functionality of applications, not their security.” In this same report, the firm indicates that “through 2015, more than 75% of mobile applications will fail basic security tests.”
NTOMobile On-Demand combines static analysis security testing (SAST), NTOSpider’s dynamic application security testing (DAST) and expert pen testers to deliver comprehensive and effective mobile application security testing services. Leveraging the power of NTOSpider’s DAST capabilities, NTOMobile On-Demand is the only mobile security solution available capable of effectively and automatically testing the web services that power mobile back ends and that leverage new technologies like REST, JSON and SOAP. NTOMobile On-Demand delivers more comprehensive web application security coverage of users’ custom web service implementations than any other solution available.
“Tackling mobile application testing has been tough for security teams as it requires an investment in proper training and tools. Comprehensive mobile application security testing requires a combination of both static and dynamic analysis. Anything less than that is simply incomplete and ineffective,” said Dan Kuykendall, co-CEO and CTO of NT OBJECTives. “Some vendors allow security teams to choose between testing the source code, testing the services and pen testing mobile applications. NTOMobile On-Demand combines static and dynamic web application security testing with expert pen testers at a competitive price.”
NTOMobile On-Demand is priced on a per year per application basis and supports the scanning of the mobile client application using a combination of source code analysis; back-end web services APIs using dynamic analysis and expert pen testing. The service supports mobile application security testing of iOS and Android devices.
The addition of NTOMobile On-Demand mobile application testing service is just one several recent product and service innovations released by the company. The company recently announced that its NTOSpider web application security scanner is the first of the application scanners to effectively introduce automated security testing of complex application workflows, including shopping carts and registration sequences, delivering more automation, accuracy and scalability than other application scanners.
Also, the company announced last month the integration of NTOSpider with browser automation tool, Selenium, allowing web application security teams to automatically detect security defects earlier in the software development lifecycle, such as during the nightly build process, improving enterprise web security with minimal additional costs and without supplementary assistance from developers and/or QA teams.
To read more about NTOMobile On-Demand, mobile application testing, and other recent web application security innovations for software development and QA teams, visit www.ntobjectives.com or call 1-877-NTO-WEBS (1-877-686-9327).
To Tweet: @ntobjectives launches NTOMobile On-Demand, Mobile Application Testing, powered by #NTOSpider for easy, complete #webappsec testing http://bit.ly/1hA70c3
About NT OBJECTives, Inc.
NT OBJECTives, Inc. (NTO) is a provider of the most comprehensive and accurate automated security testing software, services and SaaS for web applications. NTO’s customizable suite of solutions includes application security testing, SaaS scanning and in-depth consulting services to help companies build the most comprehensive, efficient and accurate web application security program. NT OBJECTives is privately held with headquarters in Irvine, CA. For more information, visit www.ntobjectives.com or follow us on Twitter at@ntobjectives or @dan_kuykendall.
The opinions expressed in this post belong to the individual contributors and do not necessarily reflect the views of Information Security Buzz.