The New York-based watchdog group worked for 14 months with German security firm Cure53 to reverse engineer the mobile app that officials use to connect to the Integrated Joint Operations Platform (IJOP), a Xinjiang policing program that flags people deemed potentially threatening