1. Open Web Application Security Project (OWASP)
1.1. Application Security Verification Standard 4.0.3 (ASVS)
1.1.1. V1.5 Input and Output Architecture
1.1.2. V7.3 Log Protection
1.1.3. V8.1 General Data Protection
1.1.4. V8.2 Client-side Data Protection
1.1.5. V8.3 Sensitive Private Data
1.1.6. V14.1 Build and Deploy
2. US National Institute of Standards and Technology (NIST)
2.1. NIST Special Publication 800-163 Revision 1
2.1.1. 2.2 Organization-Specific Requirements Provenance
2.1.2. 2.2 Organization-Specific Requirements App Criticality
2.1.3. 2.2 Organization-Specific Requirements Target Users
2.1.4. 2.2 Organization-Specific Requirements Target Hardware
2.1.5. 2.2 Organization-Specific Requirements Target Operating Platform
2.1.6. 2.2 Organization-Specific Requirements Target Environment
2.1.7. 2.2 Organization-Specific Requirements App Documentation
3. GOOGLE
3.1. Core app quality
3.1.1. VX-N1
3.1.2. VX-N2
3.1.3. VX-N3
3.1.4. VX-S2
3.1.5. VX-U1
3.1.6. VX-U2
3.1.7. VX-U3
3.1.8. VX-V1
3.1.9. VX-V2
3.1.10. VX-V3
3.1.11. VX-A1
3.1.12. VX-A2
3.1.13. VX-A3
3.1.14. FN-A1
3.1.15. FN-A2
3.1.16. FN-A3
3.1.17. FN-A4
3.1.18. FN-A5
3.1.19. FN-M1
3.1.20. FN-M2
3.1.21. FN-M3
3.1.22. FN-S1
3.1.23. FN-B1
3.1.24. PS-S1
3.1.25. PS-P1
3.1.26. PS-P2
3.1.27. PS-P3
3.1.28. PS-B1
3.1.29. SC-AC2
3.1.30. GP-P1
3.1.31. GP-P2
3.1.32. GP-P3
3.1.33. GP-P4
3.1.34. GP-P5
3.1.35. GP-X1
3.2. App Security Best Practices
3.2.1. Store Data Safely Store data in external storage based on use case