You can use the CASA framework to test your application level of assurance and provide your users higher protection and confidence in your application security posture. This type of assessment follows the below steps:
Tier Determination
Since this is a Self-Initiated Assessment only a Tier 3 assessment is validated by the authorized labs. If you are interested in checking your application readiness without validation and cost, you can follow the Tier 2 scanning procedures without submitting for validation.
Kickoff
Reach out to any preferred Authorized Assessor(s) to price and schedule your assessment. Indicated that this is a self initiated assessment.
Completion
Upon completion of the assessment you can disclose on your application and your website that your application has been independently validated through the App Defense Alliance
Validity
A self initiated assessment is valid for 1 year. In order to continue your application compliance and provide your users with higher assurance you must revalidate every year.