Welcome to Finextra. We use cookies to help us to deliver our services. We'll assume you're ok with this, but you may change your preferences at our Cookie Centre.
Please read our Privacy Policy.

Accept
Channels
Blog article
See all stories »

Channels

Security Payments
External | what does this mean?
This content is provided by an external author without editing by Finextra. It expresses the views and opinions of the author.

TEE and HCE: The ideal solution for mobile payments?

The world of mobile payments is not unlike the political systems we see in many countries around the world.  Three or more groups arguing; sometimes working together and at other times pulling in totally different directions.

Multiple players, differing priorities

Consumers typically have strong relationships with their bank, their carrier and possibly also their smartphone vendor, all of whom are vying to push their own brand of mobile wallet. However, consumers usually wish to pay with their preferred card, from their preferred bank and don’t necessarily want multiple wallets cluttering their phone’s home screen.

Banks wish to reach the widest possible audience, irrespective of which phone is being used on which network. Quite understandably, they view their brand as being of the utmost importance and want consumers to use a single, bank-owned wallet.

The smartphone vendors are offering banks and consumers a secure payments environment and a global presence, but dressed up inside their own vendor-branded wallet (e.g, Apple Pay, Samsung Pay). Some banks see this as a dilution of their brand and consumers are faced with yet another app (distinct from their mobile banking app) and potential issues when switching between phones. This is not an ideal situation, for consumers or banks.

The cloud…

While using the cloud via Host Card Emulation (HCE) appears to offer a solution that is ideal for service providers, as it is carrier- and OEM-independent (except for iPhone which is a closed solution), there remains a perception that HCE might not be secure enough. That concern might be one of the reasons why we haven’t seen mass adoption of HCE.

…the silver lining

This is where trusted execution environment (TEE) technology comes into its own. The TEE has reached a significant level of maturity, offering GlobalPlatform compliance and delivering scale across the Android base, but importantly it delivers hardware-level protection to secure HCE. This increased level of security opens up opportunities to deliver simpler (yet more secure) authentication. On top of this, the TEE’s Trusted User Interface can securely deliver value-added services such as high value payments, secure messaging and other transaction-based services.

Many banks are seeing the combination of HCE and TEE as the technologies to enable mobile payment integration with existing bank apps, satisfying the needs of the service provider and the consumer. We may now have a mobile payments solution that can finally reach scale! Watch this space…

 

7807

Channels

Security Payments
External | what does this mean?
This content is provided by an external author without editing by Finextra. It expresses the views and opinions of the author.
Report abuse

Comments: (0)

Join the discussion

Member since

0

Location

0

More from member

Community
See all blogs »
Fintech 

How innovation in encryption is helping secure the credit card approval process

Ghazi Ben Amor

Ghazi Ben Amor

Operational Risk Management 

DORA – Navigating the EU’s Operational Resilience Landscape

Antony Fung

Antony Fung

Fintech 

The importance of risk management in trading

Kate Leaman

Kate Leaman

Digital Identity Management 

Navigating the digital identity landscape: A blueprint for financial services competitiveness

Adam Preis

Adam Preis

Now hiring

See more