Device Security: NO user authentication credentials or user account information are stored in the mobile device. Data Security: NO user account information is stored permanently in the device. It is stored for display purposes only upon user's request. All account related information is flushed out when the application is quit.

End-to-end Transaction Security: All data exchanges are end-to-end encrypted using SSL. TCP/IP based data services network and are encrypted end-to-end using AES cryptography. All messages include MD5 message authentication code, allowing a phone to authenticate the server and the server to authenticate a phone.

Secure Communications: All micropacket messages between the user device and the server are encrypted with 128/256 bit keys. We use financial industry standard AES cryptography. The cryptography is end-to-end, as no information is readable until it reaches either the institutions authenticated users device or the server.

Mutual Authentication: All messages between the user device and the server have a unique message authentication code used to validate each other's identity. The server has the ability to initiate secure push messages that can be used to ask for additional factors of authentication for secondary verification.

Memory Card Hardware: The Tyfone secure memory card has a CC EAL5+ Security Certification; a PKI co-processor (up to 4096-bit RSA key); High speed triple DES on hardware; Enables SSL data transport;and is NIST Level 4 Data Security Compliant.

Security modules: The Mobile Client Software supports channel communications between the mobile phone and the Mobile Manager Server that is end-to-end encrypted using SSL/RSA/AES and optimized for speed (160 bytes or 1 TCP/IP packet)