How does Approov work?

Approov is a run-time application self protection (RASP) technology, enabling software attestation, and designed specifically for use within mobile applications running on iOS and Android. Approov uses deterministic “DNA verification” methods to ensure secure transactions, by first performing authentication using “DNA” analysis, then the app is granted a token which can then be presented to the client’s API with each request. Server-side implementations can then differentiate between genuine requests from known applications containing valid tokens versus untrusted sources, bots, or hacking frameworks.

App attestation