The safest way to pay

1 June 2019 Security Services & Risk Management, Financial (Industry)

In the ‘old days’ – the days of magnetic stripe cards – a cardholder proved that they were the rightful owner of a card with a handwritten signature at the point of sale. Then came the chip cards, where a PIN number was used for authentication in a card-present context.

Gerhard Oosthuizen
Gerhard Oosthuizen

In card-not-present situations like online shopping, however, it is much harder to validate a customer’s identity, because they only have to input strings of numbers. To prove that a shopper is the rightful cardholder, another authentication method is required, which often adds friction and frustration to a customer’s online-shopping experience.

But the widespread adoption and computing power of the mobile phone means that a solution might be on hand. Ticking the boxes of security and convenience, the mobile banking app has the potential to become the payment tool of choice.

The rise of the mobile banking app

The use of mobile banking apps has taken time to gather momentum in some markets. A reason often cited is the fear of fraud and identity theft. This is understandable when considering that securing a banking app with a username and password only goes so far in proving that a user is the legitimate banking customer – especially in an era where security breaches and attacks like phishing abound.

So how can a bank reassure its customers that having all their banking information literally in the palm of their hand can be as secure as it is convenient? And that paying with their banking app can be more secure than paying with their debit or credit card?

A matter of trust

It all comes down to trust. Establishing a relationship of mutual trust between a bank and a customer is crucial. It creates a secure foundation from which the bank can offer rich and innovative services, while giving customers the confidence to engage with these services without security concerns. The mobile phone makes all of this possible by means of three key pillars: identity, integrity, and communication.

The first step in establishing a foundation of trust is the notion of identity. Digital certificate technology makes it possible to uniquely identify any registered customer’s mobile phone as well as the banking app that was originally registered on the phone. This means the bank can be certain that they’re communicating with the right person.

Secondly, the bank needs to be sure that neither the customer’s mobile phone nor the messages being sent between the device and the bank have been tampered with. In other words, the integrity of the device, the app itself, as well as the environment in which the app is running, must be proven.

Finally, the bank and the customer need to know that communication is secure and private. This can be achieved through technology that establishes an encrypted communication channel between the bank and the customer’s banking app. Since this is a separate, secure channel, no fraudster can intercept sensitive messages meant for the customer – like authentication requests and responses.

As safe as the banking app

At Entersekt, we believe that with trust as foundation, mobile banking apps can become much more than tools for checking balances. They can become enablers of new forms of banking and commerce that will not only transform the banking industry but will also revolutionise customers’ lives.

Modern technology, such as cloud and mobile technologies, has given banks the opportunity to completely redefine the banking experience for their customers and re-establish personal relationships. Doing so turns the mobile phone into an extremely valuable commodity for customers – a passport to all types of digital experiences without the hassle of unnecessary authentication requirements. A range of banking and payments capabilities can be made available 24/7, from anywhere in the world, in the palm of the customer’s hand. More than that, when a bank has a foundation of trust in place, its app can also be the safest way for customers to transact.

For more information, visit www.entersekt.com





Share this article:
Share via emailShare via LinkedInPrint this page



Further reading:

Identity recovery matters most
Security Services & Risk Management
As cyberattacks grow more targeted, more destructive, and increasingly aimed at the very fabric of trust within the enterprise, the ability to restore identities has become just as critical as restoring data.

Read more...
ISO 27701 helps demonstrate privacy compliance beyond POPIA
Security Services & Risk Management
ISO 27701 include privacy-specific controls and provides a structured way to manage Personally Identifiable Information (PII) throughout its lifecycle, giving organisations a way to demonstrate how privacy is managed.

Read more...
Echoes of 2018? Follow-up on Woolworths explosions
Technews Publishing News & Events Security Services & Risk Management Retail (Industry) Facilities & Building Management
SMART Security Solutions follows up with Jimmy Roodt to find out more about an old connection to the Woolworths bombings from 2018. The investigation remains ongoing.

Read more...
Increase in cyberattacks on the manufacturing sector
Security Services & Risk Management News & Events Industrial (Industry)
According to a new Kaspersky ICS CERT report, in the first quarter of 2026, the percentage of industrial control systems (ICS) on which malicious objects were blocked reached 19,6% globally.

Read more...
Next-generation cash-in-transit vehicle
News & Events Security Services & Risk Management
Fidelity Services Group has unveiled a new, purpose-engineered Cash-in-Transit (CIT) vehicle designed to redefine crew protection, deter threats, and enhance operational resilience in an increasingly complex criminal environment.

Read more...
The risk at the edge of South Africa’s agriculture supply chain
Security Services & Risk Management Agriculture (Industry) Logistics (Industry)
Research from ESET has found that a significant number of South African agritech operators and farmers continue to believe their companies are not attractive targets for cybercriminals. Unfortunately, that belief is precisely what makes them one.

Read more...
AURA partners with Discovery to launch Discovery 911
News & Events Security Services & Risk Management
AURA has announced a partnership with Discovery Insure to power the security-response component of its new Discovery 911 virtual panic-button offering, which is available through the Discovery Insure app.

Read more...
Break the silence on fraud
Security Services & Risk Management
We are entering a new era of fraud, one defined by groups that operate across borders, using advanced digital tools and impersonation tactics to deceive victims and wear down communities' trust and financial security.

Read more...
Africa’s white-collar crime landscape
Security Services & Risk Management
White-collar crime in Africa is no longer a predominantly domestic concern; it has expanded onto the international stage, and so too has the corporate exposure that accompanies it.

Read more...
Global security in 2026
Editor's Choice News & Events Security Services & Risk Management Industrial (Industry) Mining (Industry)
The World Security Report 2026 states: “In a world of increasing volatility, physical security has evolved. It is no longer just a defensive measure; it is a critical driver of corporate value.”

Read more...










While every effort has been made to ensure the accuracy of the information contained herein, the publisher and its agents cannot be held responsible for any errors contained, or any loss incurred as a result. Articles published do not necessarily reflect the views of the publishers. The editor reserves the right to alter or cut copy. Articles submitted are deemed to have been cleared for publication. Advertisements and company contact details are published as provided by the advertiser. Technews Publishing (Pty) Ltd cannot be held responsible for the accuracy or veracity of supplied material.




© Technews Publishing (Pty) Ltd. | All Rights Reserved.