Skip to main content
Application Security padlock icon

This post is from the Arxan blog and has not been updated since the original publish date.

Last Updated Mar 31, 2015 — Application Security expert

Winning the Battle for Secure Mobile Payments in the Fastly Emerging HCE Ecosystem

Application Security

Until recently, the Near Field Communications (NFC) industry has been relatively stagnant due to interoperability challenges, high upfront capital costs and a complex partner relationship. What has changed and what experts believe will give fresh momentum to the NFC industry is the tremendous interest currently gathering around Host Card Emulation (HCE), especially since Google’s release of HCE capabilities in its Android (4.4) KitKat platform.

Additionally, at a recent development conference, Google has revealed that its own wallet will support the HCE platform. This intention to integrate HCE in its mobile payments/wallet strategy via the Android Pay API will provide support to phones and other smart devices which do not have hardware secure element built in into the device. This developer-friendly strategy to provide the storing of payment encryption keys via a software-based secure element approach provides mobile payment application developers with a rapid go-to-market capability.

As such, HCE is being seen as an excellent, low-cost and easy-to-install alternative to the standard secure element approach, which typically requires specific versions of devices to work. There are various benefits attached to HCE, which many experts consider as a real game changer that will drive more NFC adoption in the near future. Earlier, even though there was enormous interest within the telecom and banking sector to launch NFC mobile applications, the key challenges were the lack of sufficient infrastructure and high costs attached to storing the user data securely inside the mobile devices. HCE is the solution that can solve these problems as it can end the dependency on the TSM (Trusted Service Managers) and high costs of replacing NFC SIMs and installing expensive, proprietary POS (Point of Sales) terminals.

The value from adopting this open HCE approach without any hardware update requirements enables payment providers and ecosystem stakeholders to quickly scale and fully leverage the mobile computing platform to offer more secure payment options. The combination of contactless payment from Google plus mobile application protection yields a revolutionary solution for financial institutions and businesses to provide a secure mobile payment that can finally be embraced for mass adoption with confidence.

To learn more about how to associate your brand with this fastly emerging HCE ecosystem and to gain the first mover’s advantage, come see our VP of Product Management, Vince Arneja, speak at the HCE Summit on April 15 in New York, or view our archived webinar, Revolutionary Security for HCE Mobile Payments.

More from the Blog

View more
Jan 18, 2022

Be aware or beware: Easily insert security into your mobile apps

Application Security
COVID-19 has quickly pushed companies over the technological tipping p ...
Read More
Dec 23, 2021

Using machine learning to detect malicious packages

Application Security
Staying up to date with new technology in today’s advanced digital age ...
Read More
Dec 17, 2021

Log4j: Not the Vulnerability We Want, and Not the Vulnerability We Need

Application Security
Log4j is the reminder we didn’t need: the reminder that vulnerabilitie ...
Read More
Apr 29, 2021

Why better security means better products

Application Security
Over the past 15 years, businesses have learned a lot about the value ...
Read More
Contact Us