Eydle logo
Start Here

App Defense Alliance Assessments

Eydle performs App Defense Alliance (ADA) security assessments for applications pursuing certification under ADA assurance levels AL1 (Verified Self Assessment) and AL2 (Lab Assessment).

We operate as an accredited ADA assessment provider, with ISO/IEC 17025 accreditation, supporting ADA’s high-assurance application security requirements through structured assessment, evidence review, and coordination with the ADA Certification Body.

Assessment scope

Eydle conducts ADA assessments across the profiles defined by ADA, including:

  • Mobile Applications (Android, iOS)
  • Web Applications
  • Cloud Applications and Configurations (AWS, Azure, GCP)

Assessment scope and requirements follow ADA program documentation and are determined by the selected profile and assurance level.

How ADA assessments work with Eydle

For ADA assessments, Eydle may support:

  • Review and clarification of the Onboarding Questionnaire
  • Support for evidence preparation and collection for AL1 assessments, where permitted
  • Review of automated testing results, where required by the profile
  • Additional testing and validation for AL2 (Lab Assessment)
  • Revalidation following remediation, where developers address identified issues and request reassessment as part of the assessment workflow
  • Preparation of the Developer Test Report and Compliance Report
  • Direct coordination with the ADA Certification Body during certification review

Final certification decisions are issued by the ADA Certification Body.

Pricing guidance

ADA assessment fees vary based on application profile, assurance level, and scope. As general guidance:

  • AL1 (Verified Self Assessment): typically $300–$800
  • AL2 (Lab Assessment): typically $3,000–$6,000

Final pricing is confirmed during scoping based on the selected profile, platforms, and assessment requirements.

Initiating an ADA assessment

To initiate an ADA assessment with Eydle, contact: [email protected]

When reaching out, it’s helpful to include:

  • Application name
  • Profile (Mobile, Web, Cloud App/Config)
  • Target assurance level (AL1 or AL2)
  • Platform(s) (e.g., Android, iOS, AWS, Azure, GCP)
  • Any platform or certification timelines