When it comes to building secure mobile applications, errors most often occur in session management. By themselves, these mistakes do not present a significant risk, but the more mistakes made, the more vulnerable the application. Here is a checklist based on common mistakes that developers and security professionals can use to ensure proper session management of their mobile applications. The longer a request is valid, the greater the risk of an attacker intercepting and modifying or eavesdropping on it. Developers are, in essence, trading away security in favor of a minor inconvenience.”]
Source: https://www.csoonline.com/article/2134020/7-characteristics-of-a-secure-mobile-app.html