Complete API Protection for Mobile

The Approov SDK measures a running app's “DNA”, and the Approov service cryptographically compares it to that of your registered apps, ensuring that the running app is present, original, and untampered.

Even if your app's authenticity checks out, it may still be running in a compromised environment. Approov detects rooted/jailbroken devices, apps running in debuggers or on emulators, or malicious instrumentation frameworks manipulating your apps. You choose the security policy that meets your needs. Security changes are rolled out over the air without requiring app updates.

HTTPS/TLS works well in encrypting your app’s communications against snooping or manipulation, but hackers still establish man-in-the-middle-attacks to compromise your customers’ data or reverse engineer your APIs. Approov’s dynamic pinning service defeats these attacks, while allowing secure over-the-air pin updates with no management headaches or service disruption.

Approov’s security layers operate frictionlessly for your users. Secure over-the-air capabilities update security policies, deliver enhancements, upgrade or rotate certificates, blacklist specific devices, or deregister specific app versions.

App attestation traffic monitoring and security failure analytics are available for both command-line and graphical analysis. Establish alerts to changes in volume of attestation traffic or spikes in app integrity failures. Anonymized data provides information on the cause of the security failures and information about the app, device, and network environments.

Easy SDK integration on the frontend is combined with industry standard token checks on the backend. Make positive API authorization checks at a CDN, WAF/gateway, API management system or server. A wide range of existing mobile platforms and backend service integrations are provided with more available on request. A unified command line interface provides easy DevSecOps integration into your existing developer and operations infrastructures.