{"description": "Mobile techniques mitigated by Application Developer Guidance, ATT&CK mitigation M1013 (v1.2)", "name": "Application Developer Guidance (M1013)", "domain": "mobile-attack", "versions": {"layer": "4.5", "attack": "17", "navigator": "5.1.0"}, "techniques": [{"techniqueID": "T1626", "comment": "Applications very rarely require administrator permission. Developers should be cautioned against using this higher degree of access to avoid being flagged as a potentially malicious application. ", "score": 1, "color": "#66b1ff", "showSubtechniques": false}, {"techniqueID": "T1517", "comment": "Application developers could be encouraged to avoid placing sensitive data in notification text.", "score": 1, "color": "#66b1ff", "showSubtechniques": false}, {"techniqueID": "T1513", "comment": "Application developers can apply the `FLAG_SECURE` property to sensitive screens within their apps to make it more difficult for the screen contents to be captured.(Citation: Nightwatch screencap April 2016) ", "score": 1, "color": "#66b1ff", "showSubtechniques": false}, {"techniqueID": "T1635", "comment": "Developers should use Android App Links(Citation: Android App Links) and iOS Universal Links(Citation: iOS Universal Links) to provide a secure binding between URIs and applications, preventing malicious applications from intercepting redirections. Additionally, for OAuth use cases, PKCE(Citation: IETF-PKCE) should be used to prevent use of stolen authorization codes. ", "score": 1, "showSubtechniques": true}, {"techniqueID": "T1635.001", "comment": "Developers should use Android App Links(Citation: Android App Links) and iOS Universal Links(Citation: iOS Universal Links) to provide a secure binding between URIs and applications, preventing malicious applications from intercepting redirections. Additionally, for OAuth use cases, PKCE(Citation: IETF-PKCE) should be used to prevent use of stolen authorization codes. ", "score": 1, "color": "#66b1ff", "showSubtechniques": true}, {"techniqueID": "T1474", "comment": "Application developers should be cautious when selecting third-party libraries to integrate into their application.", "score": 1, "color": "#66b1ff", "showSubtechniques": true}, {"techniqueID": "T1474.001", "comment": "Application developers should be cautious when selecting third-party libraries to integrate into their application.", "score": 1, "color": "#66b1ff", "showSubtechniques": true}], "gradient": {"colors": ["#ffffff", "#66b1ff"], "minValue": 0, "maxValue": 1}, "legendItems": [{"label": "mitigated by Application Developer Guidance", "color": "#66b1ff"}]}