Banking & payments

The banking and financial sector has been revolutionised by technology and data. Now, more than ever, mobile payment security is critical. Our hardware-backed solutions provide the additional security that cannot be provided by software alone. We focus on the authentication and security of mobile banking and mobile point of sale (mPOS) applications for mobile financial services.

The Payment Card Industry (PCI) regulator has introduced requirements for mobile payment acceptance systems; our solutions enable straightforward compliance with PCI standards.

mPOS security

Using smartphones as payment points is a growing global trend. It reduces the reliance on cash, speeds up transactions, improves security and opens up commerce to new businesses. New PCI requirements ensure that mPOS is a secure way to pay, even as transaction values get higher.

We are actively able to support partners towards PCI compliance, including CPOC/ SPOC, as they move to secure PIN entry and trusted user interfaces.

We are the security backbone of any digital transaction. We enable our partners to adhere to critical certifications required by EMVCo, the technical standards for smart payment cards and payment terminals.

We are the only player in the market to provide a hardware-backed solution on compatible devices, and one that will seamlessly fall back to software where hardware capabilities are not present.

We are fully certified by PCI Security Standards

Use cases

Our technology enables application developers to seamlessly lay the security foundations of any banking and finance-related mobile application.

Application ID
Enhanced security
Trusted User Interface

Our solution is hardware and software agnostic. It can work across any smart device.


Application Security

Mobile banking & payment app protection

Mobile banking applications and payments must be secure to protect users from fraud and hacking. To ensure the security of their apps, banks and application developers have included layers of authentication. For example, one-time passwords (OTP), which are normally validated by text, and built-in secondary applications have been used to enhance security. Both are cumbersome for the user and costly for the merchant.

Trustonic’s Application Security solutions enable developers to make use of the full security capabilities of a modern device – from strong device identity to secure storage and processing. This allows security capabilities to be baked into the application, rather than relying on cumbersome external means, such as SMS or hardware tokens.

The greater security that we provide not only protects the user and merchant from attack, but also provides a more seamless experience, and enables user privacy to be properly respected, avoiding risks of GDPR infractions.

Application Security

We are the security backbone of any digital transaction from a mobile device

Future possibilities

Our approach is to separate the security-critical parts of an application and run them within a Trusted Execution Environment (TEE). This keeps data, code and cryptographic keys protected and allows significant flexibility in the application logic, facilitating the support of novel applications and custom protocols.

There is a rich array of financial applications that require the highest degree of security in order to carry out high value transactions or data-sensitive processes.

We work with leading fintech companies and infrastructure players to develop new solutions in the sector, with trust and security at our core.

Application Security

Highest levels possible levels of security

Professional services

We offer a range of professional service options for our customers. These range from creating the design and business case, through to implementation planning. We tailor our approach according to our customers’ needs.

Use cases

Our professional services in banking and payments focus on:

Security consulting
App development
CPOC solutions
PCI certification


Professional Services

Certifications

Standards and certifications are essential to driving security best practice. We are an active contributor to multiple standards bodies and has a close relationship with leading certification labs.

See our full certifications

Technology

Find out more about our core technology