• Fingerprint identification security

    • Objective: measure viability of the fingerprint identification mechanism for mobile payments
    • Reverse engineer storage, cryptography and access to the customer account to trigger illicit bank operations
  • Mobile Device Management (MDM) assessment

    • Objective: choose between two MDM systems
    • Reverse engineer customer-side MDM, study robustness of cryptography and possible data leaks
  • Relay attacks on HCE payment applications

    • Objective: design and implement an attack
    • Simulate malware siphoning tokens for NFC payments by relay attack using the 4G network