GlobalPlatform Hosts Mobile Security Seminar to Stimulate Development and Deployment of Trusted Applications on Mobile Devices
25 August, 2011 – GlobalPlatform is inviting service and platform providers, software vendors and device manufacturers to attend a free, one-day seminar to learn how the mobile industry is coming together to standardize security run-time execution in mobile handsets.
The event, titled 'Leveraging the Trusted Execution Environment (TEE) to Develop Secure Applications on Mobile Devices', which takes place in October in San Jose, California, aims to facilitate the mass deployment of secure mobile applications by educating delegates about the TEE; a secure area that resides in the main processor of a mobile phone and guarantees that sensitive data is stored, processed and protected in a trusted environment. The TEE's ability to offer safe execution of authorized security software, known as trusted applications, enables it to enforce protection, confidentiality, integrity and the access rights of data belonging to those trusted applications. This provides end-to-end security.
Delegates attending the seminar will learn about the vast opportunity presented by the TEE for the development of trusted applications which can be run securely in open environments, such as Android, Windows Phone and Linux. Trusted applications require a high level of security and include, for example, mobile payments, digital rights management and content protection.
The seminar will explore usage and benefits of the TEE, which is being standardized by GlobalPlatform, from the perspectives of both hardware and software providers. Specific considerations for Application Program Interfaces (APIs) will be outlined and the entire ecosystem will be examined in context of the requirements for ensuring the end-to-end security of the TEE, including technology compliance and certification to known industry standards.
Gil Bernabeu, Technical Director at GlobalPlatform comments: "This seminar is aimed at service providers – including financial institutions, remote content distributors, secure application developers and companies working to develop enterprise solutions – software developers, handset manufacturers and platform providers, who are keen to understand how to develop highly secure applications in a TEE which can run within the open environment provided by most mobile phone operating systems. We welcome attendance from representatives of these organizations, so that they can familiarize themselves with the technology, and so that we can actively engage with these stakeholders who deserve a voice in the future evolution of the TEE ecosystem.
"GlobalPlatform is committed to standardizing the TEE, to make available an interoperable solution for securing trusted applications on mobile devices. The more engagement we achieve within these work efforts from organizations and individuals who can help to enrich and grow the TEE ecosystem, the better it will be for all. This technology offers a real commercial advantage to individual organizations, and will ultimately deliver significant benefits to the mobile services marketplace as a whole."
GlobalPlatform's 'Leveraging the TEE to Develop Secure Applications on Mobile Devices' Seminar takes place on 5 October 2011, in San Jose and attendance is by invite-only. Service and platform providers, software vendors and handset manufacturers can request an invitation by filling out an enquiry form at https://globalplatform.wpengine.com/tee_preregistration.asp. Please note that this event is not relevant to TEE end-users.
At the time of this release, the mobile security seminar is being sponsored by the following GlobalPlatform members: Giesecke & Devrient, ST Ericsson, Texas Instruments Incorporated and Trusted Logic. Additional member sponsors will be announced in the coming weeks.
For further information on the TEE, a white paper which outlines the benefits of its introduction and standardization in mobile devices is free to download from www.globalplatform.org. In addition, GlobalPlatform published the Trusted Execution Environment (TEE) Client Application Programming Interface (API) Specification in July 2010. This technical document defines the communication between applications running in a rich operating environment, typically on top of a smartphone operating system, and the applications residing in the TEE. The specification outlines how to establish communication interoperability and support the migration of sensitive services into the TEE, enabling an application to become isolated and easier to control and secure.
Notes to editors
GlobalPlatform is a cross industry, not-for-profit association which identifies, develops and publishes specifications which facilitate the secure and interoperable deployment and management of multiple embedded applications on secure chip technology. Its proven technical specifications are regarded as the international industry standard for building a trusted end-to-end solution which serves multiple actors and supports several business models.
The freely available specifications provide the foundation for market convergence and innovative new cross-sector partnerships. The technology has been adopted globally across finance, mobile/telecom, government, healthcare, retail and transit sectors. GlobalPlatform also supports an open compliance program ecosystem to ensure the long-term interoperability of secure chip technology.
As a member-driven association with cross-market representation from all world continents, GlobalPlatform membership is open to any organization operating within this landscape. Its 60+ members contribute to technical committees and market-led task forces. www.globalplatform.org