iXGuard

Secure your iOS apps and SDKs through multiple layers of code hardening and RASP

Category:

Description

iXGuard provides the most comprehensive mobile app protection available. Secure your iOS apps and SDKs through multiple layers of code hardening and runtime application self-protection (RASP).

 

iXGuard is the industry-leading application shielding solution for iOS mobile app security.

 

  • Multiple layers of protection: iXGuard protects mobile apps and SDKs against reverse engineering and tampering — two of the top mobile threats according to OWASP — by applying iOS obfuscation that introduces multiple layers of code hardening and injecting RASP checks.

 

  • Expert support: Guardsquare experts assist in setup and are available to respond for support needs, ensuring a frictionless implementation to enhance iOS app security.

 

  • Seamless integration: As a post-processing tool, iXGuard doesn’t interfere with the build process, shortening time to market by allowing development teams to focus on developing and testing their application or SDK and applying protection once it is ready and working.

 

Defend against static analysis

If a threat actor decompiles your app, iXGuard ensures your code will be as resistant to reverse engineering as possible. iXGuard provides iOS obfuscation for classes, fields, arithmetic instructions and more; code virtualization; API call hiding; and many additional security features. Crucially, iXGuard’s protection is polymorphic — each build has a different security configuration, preventing a threat actor from reusing their prior knowledge.

 

 

Counter dynamic analysis

iXGuard automatically injects RASP checks, preventing threat actors from tampering with apps at runtime. What’s more, each build features different RASP checks in different locations, ensuring threat actors can’t reuse prior knowledge. iXGuard’s RASP injects checks like jailbreak detection, debugger detection, repackaging detection, code tracing detection, hook detection and more.

 

 

 

How it works

Learn more about the techniques, practices and technology iXGuard uses to keep your apps safe.

 

Mutually reinforcing security layers

A force multiplier for your app’s security

 

iXGuard’s defenses against static and dynamic analysis reinforce one another, providing more robust protection overall than any individual approach would offer. When a malicious user runs your app from a debugger or emulator to validate their static analysis, RASP checks kick in to end the user’s session, crash the application and deploy other defensive actions. Furthermore, iXGuard obfuscates each of these checks, preventing an attacker from learning where and how the application is detecting integrity violations.

 

 Diverse, broad, and polymorphic protection

Comprehensive and evolving security

 

If each of your app’s builds applies the same defenses in the same locations, an attacker will easily decipher your app’s internal logic and will know where the most sensitive information lies. That’s why iXGuard hardens broad swathes of your app’s code and draws on a diverse library of integrity violation checks to prevent an attacker’s progress. Because these code hardening and RASP techniques are applied polymorphically and automatically, no two builds feature the same protections. Thus, every build resets the clock on attackers, rendering their previous knowledge useless.

 

 Protection Report

Validate and review your security configuration

 

iXGuard generates a Protection Report for each mobile app build that incorporates its protections. This report validates and assesses the applied protections, grading your app’s security configuration against key risk categories, providing further recommendations to improve security efficacy and surfacing potentially beneficial features to activate.

 

 

 

Responsive support

We’ll ensure your iXGuard implementation is comprehensive and tailored to your needs. Afterwards, we provide two levels of support based on your needs.

 

Basic support

Rely on the Guardsquare team for bug fixes and setup support at no additional cost.

 

  • Installation and setup support
  • Bug fixes
  • Response within 3 business days
  • Email support

 

Gold support

Gain expert-level access to the Guardsquare knowledge base as well as executive technical and business review.

 

  • Installation and setup support
  • Bug fixes
  • Project-specific support
  • Configuration optimization
  • Response within 1 business day
  • Email and phone support

Datasheets

  • Datasheet 1

Video



Categories


Partners: Guardsquare

Products: Mobile Application Security