Konstantin Stepanenko, Chief Product Officer at the Russian company CardsMobile, shared with developers the success story of CardsMobile's leading wallet app Koshelek which cooperates with Huawei's HMS ecosystem. By integrating the open capabilities of Huawei's HMS Core, Koshelek's e-payment efficiency is greatly improved and payment security is ensured.
{
"lightbox_close": "Close",
"lightbox_next": "Next",
"lightbox_previous": "Previous",
"lightbox_error": "The requested content cannot be loaded. Please try again later.",
"lightbox_start_slideshow": "Start slideshow",
"lightbox_stop_slideshow": "Stop slideshow",
"lightbox_full_screen": "Full screen",
"lightbox_thumbnails": "Thumbnails",
"lightbox_download": "Download",
"lightbox_share": "Share",
"lightbox_zoom": "Zoom",
"lightbox_new_window": "New window",
"lightbox_toggle_sidebar": "Toggle sidebar"
}
Digitalization of Cards with Koshelek
Back in 2013, CardsMobile launched its first Near Field Communication (NFC) payment project. Today, Koshelek has established partnerships with most top retailers in Russia and can now digitalize physical cards that have already been issued and directly issue new virtual mobile cards within the app. For newly issued in-app cards, Koshelek can also aggregate various account details provided by partners, such as the reward balance and personal discounts.
In order to support bank cards in Koshelek, CardsMobile teamed up with Mastercard and Visa's international payment systems, and received an international license to manage tokenization and transactions for cards of any banks connected via Mastercard MDES and Visa VTS. Konstantin, Chief Product Officer at CardsMobile and the developer of Koshelek, attributed the seamless and smooth payment services on new Huawei smartphones to HMS.
The premium payment experience brought by the cooperation with Huawei HMS has instilled confidence in CardsMobile's further development. As part of its plan to deepen the integration with HMS Core, Konstantin said that CardsMobile has aimed to create a unified payment experience on Huawei smartphones using HUAWEI IDs. Meanwhile, CardsMobile has devoted itself to explore different ways to implement its payment platform on Huawei smartphones and Huawei's other smart devices.
HUAWEI Safety Detect Service Protects User Data
Koshelek allows users to digitalize and store their wallets and personal cards in the app, which involves security issues of sensitive user data in the industry.
Koshelek creates a separate user profile for each user to store user information. In this way, users won't need to enter their information twice, which improves the card issuance efficiency. Koshelek also generates a dynamic bar code based on the algorithm provided by a partner retailer, which many retailers use to authenticate loyalty members.
To prevent security risks caused by attacks on user information and credentials, CardsMobile makes HUAWEI Safety Detect an important element of mobile app operations, which is an effective way of detecting interference.
For example, when a user uses an electronic credit card account such as Visa or MasterCard in Koshelek, the user will need to enter a card verification code (CVC) to check the system environment safety of the device. If Koshelek's safety detection system which integrates HUAWEI Safety Detect indicates that the device system environment fails the SysIntegrity detection, Koshelek will not allow the user to use the app on that device so as to ensure transaction security.
In addition to the SysIntegrity detection, HUAWEI Safety Detect also provides fake user detection (UserDetect), app security check (AppsCheck), malicious URL check (URLCheck), and malicious Wi-Fi detection (WifiDetect) functions to quickly determine whether the device system has been maliciously attacked, rooted, or unlocked. In this way, users can be informed of risks or have their behavior restricted so as to protect user privacy and fund security.
Nikolay finished by thanking Huawei for providing high-quality functions and services via the HMS ecosystem. "We thank Huawei for providing new opportunities for developers. It was the introduction of the Safety Detect service that enabled our company to develop a technical solution able to satisfy all the international payment systems' requirements and to provide resources for all Russian users of new Huawei devices to tokenize bank cards and conduct contactless NFC payments."
Future: dedicated to providing globally unparalleled payment services
CardsMobile aims to provide users with globally unparalleled payment services through in-depth cooperation with HMS, and to lead the industry and market in terms of security, service quality, and convenience.
Related
From ride-hailing, navigation and mobile travel
To gaming, streaming, and social media
Mobile apps have become indispensable in daily life
But increased convenience puts sensitive user data at risk
HMS Core Safety Detect offers unique protections
For comprehensive app security with little effort!
What Is Safety Detect?
Safety Detect is an open multi-dimensional security detection service offered by Huawei, that helps developers bolster app security capabilities, based on the Trusted Execution Environment (TEE) on Huawei phones, without compromising user experience.
{
"lightbox_close": "Close",
"lightbox_next": "Next",
"lightbox_previous": "Previous",
"lightbox_error": "The requested content cannot be loaded. Please try again later.",
"lightbox_start_slideshow": "Start slideshow",
"lightbox_stop_slideshow": "Stop slideshow",
"lightbox_full_screen": "Full screen",
"lightbox_thumbnails": "Thumbnails",
"lightbox_download": "Download",
"lightbox_share": "Share",
"lightbox_zoom": "Zoom",
"lightbox_new_window": "New window",
"lightbox_toggle_sidebar": "Toggle sidebar"
}
System Integrity Check (SysIntegrity)
SysIntegrity is capable of checking whether the user device is rooted, unlocked, or escalated for higher permissions, and uses this information to help you determine how and when to restrict your app's behavior to avoid potential leaking of sensitive user information or financial information.
A unique advantage of SysIntegrity is that it is based on the TEE OS, which is built into every Huawei phone (running EMUI 9.0 or later). The TEE OS comes with Huawei's in-house microkernel, which has achieved the prestigious CC EAL 5+ certification, and is the first solution of its kind to pass formal verification. Having integrated SysIntegrity, it can isolate apps for bolstered protection, and provide independent privacy security protection services. For example, services with high security requirements, such as the payment services, are provided with the appropriate level of protection in the TEE OS.
App Security Check (AppsCheck)
When your app has integrated AppsCheck, it can obtain a list of malicious apps on the user's device, which provides a strong basis for high-level risk analysis (for risky/virus-infected apps). Users are then warned of the presence of any risks on your app, or prompted to exit your app. According to the three largest global virus evaluation agencies, AppsCheck can detect malicious apps with a staggering accuracy rate of 99%.
Malicious URL Check (URLCheck)
With URLCheck, your app can determine whether a visited URL contains phishing or malware apps. The check strikes the optimal balance between performance and timeliness, and is capable of detecting a wide range of malicious URLs, such as phishing and Trojan-infested URLs. URLCheck is easy to integrate into your app, and provides trusted, operation-free security services, reducing the costs associated with developing secure browsing services.
Fake User Detection (UserDetect)
Fake user detection is critical for app operations, as the presence of fake operations such as game bots, activity bonus hunting, and malicious spamming, can give your app a bad reputation. UserDetect can identify spoofed devices, based on the device signature and identifier, and identity relevant environmental risks, such as roots, simulators, VMs, device change tools, and anonymous IP addresses. It can also recognize fake users based on screen touch and sensor behavior, as well as prevent batch registration, credential stuffing attacks, bonus hunting, and content crawlers. These safeguards provide your app's users with unmatched peace of mind.
Many popular apps have integrated Safety Detect, such as the app for International News Agency and Radio Sputnik, APUS, a popular browser in India and Southeast Asia, and 1998 Camera in Vietnam.
How Can I Integrate HUAWEI Safety Detect?
Each of the four functions in Safety Detect has a dedicated API that is easy to integrate. For guidance during the integration process, please refer to the HUAWEI Developers website, where you will find the integration guide and other resources for reference, or acquire your answers from HUAWEI Developer Forum.
* HMS Core 4.0 courses produced by HUAWEI Developers are now available on Huawei official channels, including Video Center on HUAWEI Developers.
Entersekt's Collaboration Unlocks Financial Apps Opportunities for Developers&Users
Entersekt fast-tracks its software update to integrate Huawei Mobile Serviceopen Chip-Device-Cloud capabilities
{
"lightbox_close": "Close",
"lightbox_next": "Next",
"lightbox_previous": "Previous",
"lightbox_error": "The requested content cannot be loaded. Please try again later.",
"lightbox_start_slideshow": "Start slideshow",
"lightbox_stop_slideshow": "Stop slideshow",
"lightbox_full_screen": "Full screen",
"lightbox_thumbnails": "Thumbnails",
"lightbox_download": "Download",
"lightbox_share": "Share",
"lightbox_zoom": "Zoom",
"lightbox_new_window": "New window",
"lightbox_toggle_sidebar": "Toggle sidebar"
}
A global fintech company that leads the industry in digital security and payments enablement technology says their recent integration with Huawei Mobile Service (HMS) has enabled them to continue meeting their customers’ strong demand for user-friendly, highly secure digital banking services and will help unlock new commercial opportunities.
Entersekt is a South African-based company that pioneered phone-as-a-token, out-of-band push authentication and pride themselves on innovating in digital security, payments, and user experience in the financial sector. It works with some of the biggest names in banking and payments, including some of the largest global payments networks like Swisscard, and core banking providers like Capitec Bank, Absa and Nedbank, and offer a range of solutions spanning user authentication, digital identity, contactless, and remote customer registration.
The company fast-tracked work on its mobile software development kit (SDK) and integrated HMS’s fully open Chip-Device-Cloud capabilities, including Huawei’s Push Kit. This facilitates push messaging, enabling banking apps using Entersekt’s technology to better engage Huawei device users and giving consumers a more targeted and tailored banking service.
Entersekt chief commercial officer Dewald Nolte said the company’s collaboration with Huawei also ensures consumers upgrading to new Huawei devices will continue to be protected from fraud, giving them added confidence to bank securely.
“As more and more people choose to manage their personal finances on mobile devices, consumers expect to be able transact digitally without fear or compromise, and this partnership helps give Huawei device users peace of mind when managing their finances with applications that employ our technology,” Nolte said.
The fintech provider holds an 80 percent share of the South African digital banking authentication market and counts some major overseas banks as customers, with millions of consumers worldwide relying on the company’s software when conducting their personal banking. With the updated SDK now ready for release to app developers across the globe, Nolte regards the integration with HMS as another opportunity for the Entersekt and institutional customers listing on AppGallery.
“Not only does our latest collaboration with Huawei mean we’re better placed to meet consumer needs, it also opens up new markets and ensures that the growing number of Huawei device users can benefit from this technology, both in South Africa and abroad,” said Nolte.
Nolte also said the collaboration was made easier thanks to Huawei’s commitment to providing developers with full-cycle operational support.
“Our engineers report that the integration effort ran very smoothly, with proactive support and collaboration from Huawei,” said Nolte.
Huawei provides, worldwide, and round-the-clock operation support throughout the entire development cycle to incentivise innovation, ensure ecosystem prosperity, and help developers succeed in business.
Entersekt’s latest update is just one example of the thousands of Huawei’s collaborations with the world’s top developers to create quality apps, with Huawei’s fully open Chip-Device-Cloud capabilities helping accelerate app experience innovation. To date, over 60,000 apps have integrated Huawei’s unique hardware and software capabilities to create an enhanced user experience.
All applications developed in collaboration with Huawei, along with thousands of other quality apps, are available on Huawei’s open and secure app distribution platform, AppGallery. As one of the top three app marketplaces globally, AppGallery is available in more than 170 countries and regions, and connects over 650 million users to Huawei’s smart and innovative ecosystem.
Not only does AppGallery ensure user privacy and security, it also provides unique functional experiences and better app discovery options. It aggregates quality popular applications from around the world, with thousands of apps across 18 categories including news, social media, entertainment, and more.
For more information, please visit https://forums.developer.huawei.com/forumPortal/en/home?fid=0101246461018590361.
For more Huawei and AppGallery collaborations, welcome to our DevHub @ HUAWEI Developer Forum
Very nice, thank you
Since its release in 2018, HUAWEI HiHealth has seen continued growth globally. The platform provides open capabilities to the smart wearable, fitness, and health industries, allowing related partners to integrate with the HUAWEI Health app.
{
"lightbox_close": "Close",
"lightbox_next": "Next",
"lightbox_previous": "Previous",
"lightbox_error": "The requested content cannot be loaded. Please try again later.",
"lightbox_start_slideshow": "Start slideshow",
"lightbox_stop_slideshow": "Stop slideshow",
"lightbox_full_screen": "Full screen",
"lightbox_thumbnails": "Thumbnails",
"lightbox_download": "Download",
"lightbox_share": "Share",
"lightbox_zoom": "Zoom",
"lightbox_new_window": "New window",
"lightbox_toggle_sidebar": "Toggle sidebar"
}
Globally, there are millions of devices connected to HUAWEI HiHealth. On top of that, an increasing number of developers are connecting to HUAWEI HiHealth as they seek to develop and publish apps that offer users great experiences while creating viable and sustainable business models. In July this year, we will see the release of HUAWEI HiHealth 5.0, an updated version of the platform that will offer even greater benefits for both consumers and developers alike.
Market-leading technology that empowers developers
For developers, who specialise in health apps, HUAWEI HiHealth has a range of technology features that allows them to create better, more intuitive apps. For example, the HUAWEI HiHealth offers highly accurate multi-dimensional motion detection models. This means it can process information from varying kinds of smart devices which can then be fed into these apps, providing users with a much more rounded and accurate fitness experience on their devices. Meanwhile, Huawei’s TruSleep™, a leading sleep analysis technology, is also integrated into the HUAWEI HiHealth, through which users are offered a sleep score and personalised recommendations via their wearable devices.
At the same time, the platform also features open capabilities across diverse scenarios, giving developers the flexibility and freedom required to create comprehensive apps that leverage health and fitness data that provide a great user experience.
HUAWEI HiHealth allows developers to build powerful apps
HUAWEI HiHealth provides capabilities in the form of a kit. For developers, connecting to HUAWEI HiHealth offers several further benefits as they seek to create compelling health and fitness applications. When developers connect their apps to HUAWEI HiHealth, they can obtain health and fitness data in collaboration with the user, as well as open abilities that allow them to offer consumers superior fitness and health guidance that is truly customized.
It provides atomized and scenario-based data through Java APIs, JavaScript APIs, and Cloud APIs. In addition, Gym Profile and Wellness Profile are used to connect to southbound fitness and health devices in the ecosystem to form an industry chain for information collection, secure storage and processing, as well as sharing. It not only provides client-side APIs - but also has server-side APIs through which apps can access the data warehouse.
Wide range of use cases for HUAWEI HiHealth
Developers can broadly leverage HUAWEI HiHealth in four different kinds of scenarios: fitness; health management; insurance; and more comprehensive apps that cover a broad range of uses and utilities.
For example, South African insurer Discovery uses wearable devices to help build better services for its customers, offering them rewards when they log exercise points. It has recently collaborated with Huawei, allowing its users to benefit from this rewards scheme through syncing their HUAWEI Health app with Discovery.
For fitness apps, HUAWEI HiHealth also allows the collection of accurate fitness data capabilities that improves the reliability of the analysis and the output – an example of this is Huawei working with running app Running Quotient to help runners and coaches improve, and Thai app Cal Daily is leveraging HUAWEI HiHealth to calculate consumers’ calories consumption by counting their steps.
Growing availability of health innovation driving next generation of apps
As the use of wearable devices continues to grow globally and consumers become ever more conscious about taking health and fitness seriously, apps that respond to these trends for tangible benefit will become increasingly popular. HUAWEI HiHealth gives developers the technology and innovation needed to create outstanding apps for health-conscious, fitness-fanatic users while also enabling them to create and sustain new business models.
For more information, please visit https://developer.huawei.com/consumer/en/
Notes:
The HUAWEI HiHealth Platform also offers users multiple levels of data, security and privacy protection and manages data by security level and category.
All of the data that developers are able to access via the kit is encrypted for storage.
Transmission and data acquisition must be authorized by users.
HUAWEI HiHealth is GDPR compliant and personal data is managed throughout its lifecycle in accordance with GAPP.
A series of Codelabs challenge competitions in the Codelabs exhibition area at the HUAWEI DEVELOPER CONFERENCE 2020 (Together), which took place from September 10 to 12 at Songshan Lake in Dongguan, proved to be a hit among developers in attendance. Nearly 1,000 developers participated in the Codelabs activities and came away highly impressed with the programming experience.
{
"lightbox_close": "Close",
"lightbox_next": "Next",
"lightbox_previous": "Previous",
"lightbox_error": "The requested content cannot be loaded. Please try again later.",
"lightbox_start_slideshow": "Start slideshow",
"lightbox_stop_slideshow": "Stop slideshow",
"lightbox_full_screen": "Full screen",
"lightbox_thumbnails": "Thumbnails",
"lightbox_download": "Download",
"lightbox_share": "Share",
"lightbox_zoom": "Zoom",
"lightbox_new_window": "New window",
"lightbox_toggle_sidebar": "Toggle sidebar"
}
Developers in the Codelabs exhibition area
Social Coding: Difficult, but Fun and Rewarding
Huawei Codelabs serve as training camps for developers who hope to hone their coding skills. This year's sessions drew hundreds of developers, from novices to veteran coders, providing them with a unique opportunity to experience the full range of open capabilities offered by Huawei Mobile Services (HMS), with technical experts from Huawei on hand to offer assistance.
In the exhibition area, developers were presented with three separate competition types (related to AI, HMS Core basic capabilities, and HarmanoyOS respectively), each of which challenged and engaged them in distinct ways. During the competitions, on-site staff and technical experts provided participants with professional-level guidance, for a hands-on coding experience, helping them quickly grasp how to access capabilities opened up to devices.
Huawei staff in the Codelabs exhibition area
The competition testing the HMS Core basic capabilities was open to junior and intermediate developers, and ultimately attracted the largest crowd. The security capability, one of the key capabilities provided by HMS Core, has seen some of its kits integrated into a range of apps that have proven indispensable in daily life, such as those related to financing, news and reading, and online shopping.
Safety Detect Cracks the Top 10 Most Attractive Open Capability List
Safety Detect, one of the main open security capabilities offered by HMS Core, detects five common security issues, which are: threats to system integrity, fake users, app security, malicious URLs, and malicious Wi-Fi networks.
System integrity detection determines whether the device environment is secure; the fake user detection judges if the current interactive user of the app is genuine; the app security detection enables developers to obtain a comprehensive list of malicious apps; the malicious URL detection clarifies the threat type corresponding to specific URLs; and the malicious Wi-Fi detection checks the security of the Wi-Fi network that the device is connected with.
Developers integrating Safety Detect in the Codelabs exhibition area
According to a post-event survey, participants included a significant number of developers who had already integrated HMS kits and Safety Detect ranked among the top 10 most integrated kits. Developers in attendance expressed an eager willingness to integrate the open capabilities of Safety Detect into their apps. Besides, Safety Detect also made it to the top 10 kits that developers showed greater willingness to integrate into their apps.
HMS Core security services exhibition area
Following the conclusion of the competitions in the Codelabs area, developers went to the adjacent HMS Core security services exhibition area, where security service vendors and financial payment app vendors dialogued with Huawei technical experts. Interactive demonstrations, such as immersive one-minute animations, provided attendees with a firsthand look at the HMS security ecosystem. The informal, face-to-face format of the event, also provided them with a chance to exchange ideas about app security technologies.
HMS Core security capabilities showcase in the security services exhibition area
During the event, an exhibitor opened foreign apps installed on the test mobiles to offer a direct side-by-side comparison for the effects of Huawei security services on secure and un-secure devices, showcasing the robust safeguards in place. Enterprise developers were among those who came away impressed, noting that they planned to work more closely with Huawei in the near future to bolster the security of their apps released outside of the Chinese mainland.
For more details, you can go to:
Official website
Development Documentation page, to find the documents you need
Reddit to join developer discussion
GitHub to download demos and sample codes
Stack Overflow to solve any integration problems
Overview
Koshelek is a leading electronic payment app developed by Cardsmobile in Russia. Users can add their bank cards to the app for convenient payments. By integrating the SysIntegrity (system integrity check) function in HUAWEI Safety Detect, Koshelek has made electronic payments more secure, and reduced the instances of credit card fraud resulting from device system environment risks.
{
"lightbox_close": "Close",
"lightbox_next": "Next",
"lightbox_previous": "Previous",
"lightbox_error": "The requested content cannot be loaded. Please try again later.",
"lightbox_start_slideshow": "Start slideshow",
"lightbox_stop_slideshow": "Stop slideshow",
"lightbox_full_screen": "Full screen",
"lightbox_thumbnails": "Thumbnails",
"lightbox_download": "Download",
"lightbox_share": "Share",
"lightbox_zoom": "Zoom",
"lightbox_new_window": "New window",
"lightbox_toggle_sidebar": "Toggle sidebar"
}
Challenges
To ensure payment security, the Koshelek app needs to ensure that users' devices used for payment are secure. Any risks, such as if the device is rooted or unlocked, can pose a threat to the users' personal privacy information, transactions, and passwords. Therefore, the development team of Koshelek needs to implement security detection capabilities which would enable the app to evaluate device environment security.
There is another reason why data security is of the utmost importance for the Koshelek app. "We create user profiles which we use to store user and credit card information", said Nikolay Ashanin, Cardsmobile's Chief of Mobile Development. "It is therefore imperative that all user data is completely secure."
Solution
HUAWEI Safety Detect is a multi-dimensional, open security detection service. It provides functions such as SysIntegrity to help apps quickly build security capabilities and protect users' privacy and security.
"We consider Safety Detect to be one of the main elements of our app protection system", said Nikolay Ashanin. By integrating the SysIntegrity function, the Koshelek app is able to evaluate the security of a user's device environment when the user is making payments.
If the user's device does not pass the SysIntegrity check, Koshelek can inform the user that their device is at risk, and prevent them from proceeding. This protects the user's account security, personal information, and transactions. "Safety Detect has enabled our company to develop a technical solution that satisfies the requirements of the international payment system", Nikolay Ashanin said, "HUAWEI Safety Detect has made the development process more efficient and convenient."
SysIntegrity meets Koshelek's requirements for security detection capabilities which are applicable to payments and transactions. It helps the app deliver secure bank card token services that meet international payment requirements. "After we integrated SysIntegrity, we saw that instances of credit card fraud resulting from device system environment risks was reduced", said Nikolay Ashanin.
Results
Credit card fraud instances resulting from device system environment risks were reduced.
The Koshelek app is able to satisfy international payment system requirements.
Can it be used with Visa, Mastercard and American Express ?