tencent cloud

Mobile Security
Stable and effective app security services
Overview

Mobile Security provides one-stop scenario-based security solutions for apps. Based on Tencent's years of technical experience in over 1.2 billion mobile devices, Mobile Security offers various services such as app reinforcement, security assessment and compatibility testing for many industries including finance, Internet, Internet of Vehicles, Internet of Things, ISP and government affairs. With its stable, simple and effective services, mobile security construction is simplified.

Benefits
Scenario-based Protection

Mobile Security provides scenario-based security services to effectively improve the security level of apps in various scenarios including app reinforcement, security assessment, compatibility testing and utilities.

Reinforcement

App reinforcement integrates various reinforcement and protection technologies into an APK targeted at different security defects without modifying the Android source code of an app, thereby improving the overall security level of the app and protecting it from being cracked and pirated.

Stability and Reliability

The security capabilities provided by app reinforcement operate stably in complex environments with high compatibility and low crash rate, supporting ARM, AArch64, x86 and x64 architectures and Android versions from 2.0 to P.

Risk Identification

Security assessment provides high-quality app security detection services while ensuring the data security during detection. Tencent Cloud's security assessment capabilities include code security risk detection, potential vulnerability scanning, malicious code scanning, system permission detection and sensitive word detection.

Practice-driven Development

Mobile Security serves hundreds of thousands apps operated by Tencent and numerous Chinese companies installed in over 1.2 billion mobile devices, gaining rich experience in stable mobile security operations.

Features
App Reinforcement

App reinforcement integrates various reinforcement and protection technologies targeted at different security defects into the APK without modifying the source code of the Android app, thereby improving the overall security level of the app through the following features: decompilation prevention for DEX, decompilation prevention for .so files, anti-tampering for apps, and anti-debugging for apps.

To ensure that the source code is not leaked, source code obfuscation improves the overall app security through various methods such as obfuscation, encryption, and virtualization. It makes the source code more scalable, stable, and analysis-resistant. In addition, it supports string encryption, symbol encryption, and logic scrambling.

Security Evaluation

Based on Tencent's massive amounts of security big data and leading security detection engines, app security scan covers six dimensions: app security, app source file security, component security, communication data transfer security, local data storage security, and risk prevention. It comprehensively detects mobile app risks to ensure a smooth user experience.

In-app third-party SDK detection dynamically monitors integrated third-party SDKs while the app is running. When a third-party SDK requests sensitive permissions or accesses sensitive data files, it will analyze whether such behaviors are legal and compliant, and if they are not, it will block, log, and report them to the backend management system to prevent sensitive information, user privacy, and application permissions from being stolen. In-app third-party SDK detection has five major features: permission monitoring, user information collection monitoring, traffic monitoring, backdoor monitoring, and malicious SDK detection.

Compatibility Testing

Based on the core capabilities of Tencent WeTest, Tencent Cloud compatibility testing provides one-stop compatibility testing services and solutions for Mobile Security.

An APK can be quickly submitted, with a test report returned within an hour on average. During testing, first-hand data is provided for problem backtracking. Testing data is also presented in multiple dimensions such as problem type, severity, frequency of occurrence, and impacted users.

Scenarios
App Testing Phase

Tencent Cloud's security assessment provides comprehensive risk detection during app testing, including code security risk detection, potential vulnerability scanning, malicious code scanning, system permission detection and sensitive word detection, to help identify potential risks in a comprehensive and in-depth manner.

App Release Phase

During an app's release phase, app reinforcement can protect app security to prevent the app from being cracked and pirated after released; while taking into account security assurance, the app can be fully tested for compatibility by Tencent Cloud's compatibility testing, ensuring that the app not only is secure but also has excellent stability after released.

Pricing

If you need the Mobile Security services, please contact us!