The audit process involves a comprehensive evaluation of the various components of the Voatz platform, including the:
- Cloud infrastructure
- Mobile applications
- Blockchain network
- Source code
- Corporate network
Testing focuses on the most critical security concerns as outlined by organizations such as the Open Web Application Security Project (OWASP), The SANS Institute, the National Institute of Standards and Technology (NIST), and The MITRE Corporation. They cover, but are not limited to:
- OWASP Mobile Top 10 Risks
- Unintended data leakage
- Attack on binary protections
- Local and remote injection attacks
- Unauthorized information disclosure attacks
- Application reverse engineering or decompilation
- Common authentication and authorization issues