V-Key's breakthrough technology secures mobile apps instead of the device

Founded in 2011, V-Key is a cutting-edge mobile phone security research and development company credited with inventing the world’s first Mobile App Intrusion Protection System to secure mobile applications.

The company first started its advanced threat malware research with top government agencies in order to understand advanced threats on untrusted mobile devices, said Mr Benjamin Mah, Co-Founder and Chief Executive Officer of V-Key Inc.

Due to weak security surrounding mobile devices, attackers can gain access through application phishing, trojans, vulnerabilities, and even device misconfiguration. And although mobile operating systems may provide some form of security for applications, this is ineffective once the device is compromised. Attackers can install keyloggers to detect or “sniff out” employees’ and users’ confidential information including usernames or passwords. These credentials can subsequently be misused to gain unauthorised access to enterprise data or to conduct fraudulent transactions. The victim’s mobile devices can also be viewed and controlled remotely by attackers, rendering traditional mobile security solutions ineffective.

To address these security issues and differentiate itself from competitors, V-Key developed a breakthrough, one-of-a-kind technology instead of adapting legacy PC security to mobile devices.

With V-Key’s award-winning V-Guard Mobile Security, a user’s sensitive information and transactions will continue to be secured even if the mobile device itself is lost or compromised. This is because V-Key implements a secure sandbox with multi-layered security mechanisms to secure the application from both hackers and trojans.

The company provides a trusted platform for mobile integrity checks by performing sensitive processing and cryptographic operations, and enabling cryptographic keys and data to be processed and stored in the application. This means that even if an attacker has control of the underlying software environment, it will be impossible for him to attack the mobile application itself to steal information from the application or user.

The tamper-proof virtual layer which protects the application from both hackers and Trojans includes mechanisms such as binary code morphing, anti-reverse engineering, trojan detection mechanisms and device checks, as well as techniques to respond to attempted tampering when detected.

By securing the apps and not the devices, the technology provides a way for companies to effectively secure their mobile applications without having to lock down mobile devices or compromise the user experience. This means that data, mobile transactions, BYOD (Bring Your Own Device) end users and the apps themselves will be far more protected than the device itself.

Today, V-Key is focused on moving global electronic mobile payments, mbanks transactions, insurances businesses, and governments. The company also Fortune 1000 organisations beyond traditional card and business boundaries to a vast new market of more than 4 billion mobile subscribers globally, said Mr Mah. It also secures millions of mobile applications, enabling mobile application transactions and securing BYOD/UYOD (Use Your Own Device) enterprise mobile applications and data. Going forward, it is looking to translate its technology inventions into mobile payment standards by working with global payment providers, and bringing its solutions global through partnerships.

“In a short space of time, mobile devices – through their applications - have become a vitally important part of people’s lives and enterprise business strategies, from fast-growing start-ups to Fortune 1000 companies,” said Mr Mah. “The critical shift in focus to securing the mobile applications and data instead of the mobile devices has presented an opportunity to create trusted mobile application platforms for global business transformation.”