trust4MOBILE

***IMPORTANT NOTICE: This application requires a valid digital certificate issued by certSIGN. To get one, visit our website: www.trust4mobile.ro***

trust4MOBILE is an easy to use mobile application that ensures the privacy of every call, text message and document you either initiate, send or receive using your mobile device.
With trust4MOBILE, your sensitive information is encrypted end-to-end, in real time. This means all your information is protected 100% of the time, both in transit and at rest (while stored on your mobile device). trust4MOBILE makes this possible by using a mix of digital certificates that rely on strong cryptographic elements and military-grade encryption technologies.
trust4MOBILE combines simplicity of use through an exceptional user interface with high standards of security technologies, initiating encrypted phone calls just as simple as making a standard phone call through its friendly user interface.

With trust4MOBILE, your privacy always comes first by giving you full control over its functionalities and security features. You are able to decide whether the application saves the call history or not, if it stores (in encrypted format) the messages and documents you receive or the lifetime for a message stored locally.
TECHNICAL INFORMATION
For each message or call, an individual key exchange session is generated. All keys are self-destructed when the call ends and cannot be reused. The messages are stored locally in encrypted format even after they have been read.
trust4MOBILE uses cryptographic keys and digital certificates, in both software format (in a PKCS#12 container, stored in the memory of the device) and in hardware format (stored on a secured element such as a smart card, associated with the mobile device). For both formats, the protection of the keys and the digital certificate is assured by using a chosen PIN code that protects the access to your private key.
This allows the implementation of the two-factor authentication mechanism when the digital certificate stored on the mobile device is used:
• What the user has: the digital certificate stored on the mobile device (locally stored or on the secure element),
• What the user knows: the password or the PIN code that authorizes the access to the private key associated with the digital certificate.
• Supported features, standards and algorithms:
• secure element on board key generation (generating the keys on the smart card prevents them from being copied or stolen),
• PKCS#12, SSL, TLS, x509v3.
• AES encryption with 256-bit keys, RSA 2048-bit keys, SHA256 algorithm.
High security product: certSIGN develops applications with a high degree of security internationally recognized. Some of our products are approved by NATO for the Protection of Alliance Information and are present in the NIAPC catalog (NATO Information Assurance Product Catalogue).
If you have any feedback, questions, or concerns, please email us at: t4m@certsign.ro.