Apps expertise

Apps Are The Main Vector Of Mobile Threats

Apps are a direct access point to personal and corporate information. With short development cycles, direct access to end users, lack of security checks from app stores…

Apps became the main vector of mobile threats. They are today the biggest challenge of mobile security.

A Real Protection Against Apps Malicious Nature

THE MOST ACCURATE DETECTION TECHNOLOGY

CORRELATION is Pradeo’s unique and patented technology detecting precisely all behaviors and vulnerabilities. CORRELATION method reflects Pradeo’s capability to precisely reveal actions performed on data where risk-based solutions estimate the likelihood for an action to be performed on a data.

AUTOMATIC REMEDIATION, A STRUCTURING EXCLUSIVITY

Sometimes, applications have side and hidden behaviors (localization, data sendings over the network, overtaxed SMS, …) that are not required to serve their purpose.
Pradeo’s research team took an additional step forward in mastering Apps behaviors by developing an automatic remediation. It only takes one click to remove unexpected behaviors from an App and let users benefit from it.

SCANNING Screen known malware signature.

APP REPUTATION (MARS) Rate the risk level of an app estimating its malicious nature.

CORRELATION Accurately reveal app’s behaviors, vulnerabilities and determine with certainty its malicious nature.

REMEDIATION Undo unexpected behaviors according to the security policy.

Case Study: App Reputation Analysis VS Correlation Analysis

TWO APPLICATIONS

APP A - Sends contacts over the network
- Accesses to location data

APP B - Accesses to contacts
- Sends location over the network

A GIVEN SECURITY POLICY

  • Contacts access
  • Contacts sending
  • Location access
  • Location sending

APP REPUTATION SOLUTION (MARS)

  • Both Apps are rated at the same level as they ask for the same permissions
  • No conclusion possible

PRADEO SECURITY

  • Application A is automatically blacklisted as it sends contacts over the network
  • Application B is granted as it satisfies the company policy