By: the European Union Agency for Network and Information Security (ENISA)
From the Introduction:
This document is an updated version of the Smartphone Development Guidelines published by ENISA in 2011. New developments in both software and hardware have been translated into new significant threats for the mobile computing environment, highlighting the need for an update of the document. […] This document is written for developers of smartphone applications as a guide for developing secure mobile applications. As such, all other guidelines regarding secure code development (e.g., Software Development Life Cycle) and guidelines for securing servers (e.g., defence in depth) are still valid and should be employed as needed. Nevertheless, mobile applications have some specific properties and functions, which we have tried to identify to help you make a secure mobile application.
Read more: introduction with link to full text
See also: news release