Google Wallet should rely on ARM TrustZone to make the pin code authentication system 100% secure. I filmed about ARM TrustZone a couple years ago. (I suggested this last May when Google Wallet was launched). The way ARM TrustZone works is to create a separate 100% trusted OS used just to enter the pin code on a hardware level separation, thus a little secure-mode light diode can light up when in it, the main purpose is to prevent software snoopers/fake logon screens etc. I expect something like this is enabled by the NXP PN65 security chip that Google has suggested using on the initial couple NFC-enabled phones on the market, but actually using ARM TrustZone is the best idea. I expect to see new ARM TrustZone enabled phones at Mobile World Congress in a couple weeks from now. Here’s a latest news item about ARM TrustZone for Mobile Wallets: ARM to add NFC mobile wallet support (NFCworld.com)
Related articles
- Google kills use of prepaid credit cards via Google Wallet (slashgear.com)
- Woes Come to Google Wallet (devicemag.com)
- Video: If you root your Android device, your Google Wallet PIN code gets exposed (intomobile.com)
- Google Wallet’s PIN System Has Been Cracked But Don’t Panic Just Yet (gizmodo.com.au)
- Google defends Google Wallet despite hacking wave (slashgear.com)
