A system and method may be used in generating security profiles for mobile device applications. An application may be installed and executed in a controlled execution environment. Physical, functional, data and/or communications parameters of the executing application may be monitored and/or analyzed. In this regard, the analysis may comprise evaluation based on comparison against benchmark data for the specific type of application being executed and for the specific execution environment. A security profile may be generated based on the monitoring and/or analysis. In this regard, the security profile may include security classification information for the application. The security profile may be made available to servers and/or to user mobile devices.