Verification of a DeepLink implementation via code review and application penetration test