Question 1

What is RASP (Runtime Application Self-Protection)?

Accepted Answer

RASP is a security technology that runs inside your application to detect and prevent attacks in real-time. Unlike perimeter defenses (firewalls, WAFs), RASP operates at the application layer and can detect code injection, hooking, debugging, and tampering as they happen.

Question 2

How is RASP different from app shielding?

Accepted Answer

App shielding applies static protections at build time — code obfuscation, anti-debugging flags, integrity checks. RASP adds dynamic, runtime protection that detects active attack attempts. Deep ID combines both approaches: static hardening verified at runtime through RASP.

Question 3

What frameworks and tools does Deep ID detect?

Accepted Answer

Deep ID detects Frida, Xposed Framework, Magisk (including MagiskHide/Zygisk), Substrate, LSPosed, EdXposed, GameGuardian, Lucky Patcher, app cloners, screen mirroring tools, accessibility service abuse, overlay attacks, and custom hooking frameworks. Detection is updated continuously.

Question 4

Does RASP affect app performance?

Accepted Answer

Deep ID's RASP operates with sub-50ms latency and minimal battery impact. Detection runs asynchronously and does not block the main thread. The SDK is under 500KB and optimized for mobile devices.

Question 5

Can attackers bypass RASP?

Accepted Answer

No single check is unbypassable, which is why Deep ID uses layered, multi-signal detection. Bypassing one check (e.g., root detection) still triggers other signals (hooking detection, integrity checks, behavioral analysis). This layered approach makes full bypass extremely difficult and economically impractical for attackers.

Question 6

How does Deep ID differ from Guardsquare or Promon?

Accepted Answer

Guardsquare and Promon provide app hardening but not device intelligence. Deep ID is the only platform that combines RASP + persistent device fingerprinting + SIM binding in one SDK. This means you get both app protection AND fraud-grade device identification without integrating multiple vendors.

Runtime protection that hardens your app

Multi-layered runtime application self-protection

Code Integrity Verification

Anti-Tampering Engine

Debugger & Emulator Detection

Obfuscation Verification

Why RASP Matters

Static protection isn't enough

Frida and hooking frameworks bypass certificate pinning

Root/jailbreak hides give attackers full device control

Emulators and cloners enable scaled abuse

Repackaging bypasses app store protections

App Hardening FAQs

Harden your app and identify devices in one SDK