Skip to main content

Security Testing Process

IBM has an internal development and release process for ensuring code quality and to mitigate the risk of vulnerabilities. As part of the development process, all products are scanned by security vulnerability scanning tools to mitigate the risks of at least the following:

https://www.ibm.com/support/knowledgecenter/en/SSW2NF9.0.3/com.ibm.ase.help.doc/topics/rsanscwetop25_report.html

In addition, IBM Security products are developed and tested according to the best practices outlined in the IBM Secure Engineering Framework

http://www-03.ibm.com/security/secure-engineering/

We do not provide external security certifications for IBM Verify SDK. IBM recommends professional security scanning be performed on all mobile apps built with the SDK.