News
Licel’s vTEE Achieves EMVCo Security Evaluation Certificate
July 2024 by Marc Jacob
Licel has announced that its virtual trusted execution environment (vTEE) has been successfully evaluated and approved by EMVCo under the SBMP TEE category. The Licel vTEE is already facilitating the acceleration and innovation of mobile wallet and SoftPOS solutions, and in the coming years it looks set to make even more digital transactions and operations much more simple, seamless, and secure. With the global mobile payment market projected to grow from $3.84 trillion in 2024 to $27.81 trillion by 2032, this is a timely and necessary security advancement.
Licel vTEE
One of the most obvious benefits of the Licel vTEE is that its rich cryptographic security mechanisms are tailor-made to comply with the most stringent requirements found in PCI MPoC, EMVCo SBMP, EMVCo TEE-based Mobile Payments, and Mastercard Cloud Payments specifications. This makes the process of achieving compliance much easier for innovators and disruptors in the mobile payments space.
This sentiment is shared by Jose Ruiz, Cybersecurity BU Director of Applus+ Laboratories.
The EMVCo SBMP TEE evaluation process* is thorough and demanding, with stringent requirements driven by Global Platform TEE standards. The Licel vTEE had to prove its ability to provide a secure execution environment where trusted applications could perform sensitive transactions while safeguarding against a range of sophisticated threats. Its approval reinforces Licel’s core mobile channel protection offering, which includes DexProtector (itself EMVCo SBMP approved for 4 consecutive years) and Alice Threat Intelligence.
The Licel vTEE is well placed to enable and protect SoftPOS solutions, mobile wallets, and mobile banking applications contributing the huge growth in mobile payments. But in the years to come, as digital transactions and operations become the norm across industries, it can also be used in a range of settings, from securing AR and VR activities to protecting digital IDs and AI models.
EMVCo issuance of a certificate for the Product shall mean only that the Product has been evaluated in accordance and for sufficient conformance with the EMV Security Guidelines for TEE-based Mobile Payment as of the date of evaluation. EMVCo’s certificate is not in any way an endorsement or warranty regarding the completeness of the security evaluation process or the security, functionality, quality or performance of any particular product or service. EMVCo does not warrant any products or services provided by third parties, including, but not limited to, the producer or provider of the Product and EMVCo approval does not under any circumstances include or imply any product warranties from EMVCo, including, without limitation, any implied warranties of merchantability, fitness for purpose, or non-infringement, all of which are expressly disclaimed by EMVCo. All rights and remedies regarding products and services which have received EMVCo approval shall be provided by the party providing such products or services, and not by EMVCo and EMVCo accepts no liability whatsoever in connection therewith.
