Secure, reliable, and EMVCo evaluated.
DexProtector and the Licel vTEE both hold EMVCo Security Evaluation Certificates for the SBMP and SBMP TEE categories respectively.
What is EMVCo?
EMVCo is a global technical body responsible for the secure integration of card-based payment products worldwide. It is collectively owned by industry giants like American Express, Discover, JCB, Mastercard, UnionPay, and Visa.
EMVCo’s technical specifications and programmes exist to help people develop safe, seamless, and secure payment solutions. In some cases developers of payment products will have to comply with EMVCo specifications, while in others the guidelines set out by EMVCo can go a long way in helping achieve compliance with other requirements such as PCI MPoC.
Our EMVCo-evaluated products.
Two of the most important and relevant EMVCo specifications for the payment industry are the Security Guidelines for Software-based Mobile Payments (SBMP) and the Security Guidelines for TEE-based Mobile Payments.
A NOTE FROM EMVCo
EMVCo issuance of a certificate for the Product shall mean only that the Product has been evaluated in accordance and for sufficient conformance with the EMV Security Guidelines for SBMP and TEE-based Mobile Payment as of the date of evaluation.
EMVCo's certificate is not in any way an endorsement or warranty regarding the completeness of the security evaluation process or the security, functionality, quality or performance of any particular product or service. EMVCo does not warrant any products or services provided by third parties, including, but not limited to, the producer or provider of the Product and EMVCo approval does not under any circumstances include or imply any product warranties from EMVCo, including, without limitation, any implied warranties of merchantability, fitness for purpose, or non-infringement, all of which are expressly disclaimed by EMVCo.
All rights and remedies regarding products and services which have received EMVCo approval shall be provided by the party providing such products or services, and not by EMVCo and EMVCo accepts no liability whatsoever in connection therewith.
The Security Guidelines for Software-based Mobile Payments.
A specification that addresses the security of software-only mobile payment solutions (such as mobile wallets). This covers some of the most important mobile application security mechanisms you can think of, from code and resource hardening through to RASP and integrity control.
The Security Guidelines for TEE-based Mobile Payments.
A specification that focuses on the use of Trusted Execution Environments (TEEs) to help protect applications processing sensitive transactions. It covers advanced cryptographic protection mechanisms required for applications that need enhanced levels of security.
DexProtector
DexProtector has received the EMVCO SBMP Security Evaluation Certificate for four consecutive years and was the first software protection tool to be evaluated for both Android and iOS.
learn morevTEE
The Licel vTEE holds the EMVCo SBMP TEE Security Evaluation Certificate and is currently the only virtual trusted execution environment to be listed on the EMVCo website.
learn moreWhat EMVCo evaluation means:
Speed up your own certification bid.
The fact that our products have been successfully EMVCO evaluated means that your own Licel-protected applications are likely to be certified and industry approved more quickly. This can save you both time and money as it will mean you only need to apply once.
Enhanced security.
EMVCo is synonymous with solutions that meet the highest security standards, protect against fraud and stop the most sophisticated cyber threats. Using EMVCo-evaluated security products is a way of proving that best-in-class protection matters to you.
Future-proofed trust.
Compliance with EMVCo standards can future-proof your solution and make sure it’s ready to meet evolving security challenges in the years to come. This ongoing commitment to security can help you to build trust with your end users and other stakeholders.
Our commitment to continuous security.
A big part of our philosophy at Licel is a belief in the best security being continuous. Bad actors are constantly evolving their attacks and looking for gaps they can exploit, so we cannot and will not stand still.
Security reviews, interactions with security researchers, and feedback from DexProtector users all feed into this commitment. They can all influence product enhancements and updates. We believe that annual EMVCo evaluations are the perfect way for us to honour our commitment and make sure that everything that we do contributes towards creating best-in-class security products fit to fight back against modern cyber threats.