Promon SHIELD™

App security for financial services

Keep online transactions and transfers out of the hands of criminals.

Promon Shield Fiance Logo
Self Protecting App

Secure transactions and transfers

With the explosive growth of the mobile channel and user demand for anytime/anywhere access to their banking and payment services, banks are stretching the boundaries of security, and putting them squarely in the crosshairs when it comes to malicious attacks. Promon SHIELD™ prevents hackers from getting to your app revenue, and secure apps from a range of attack vectors, such as:

  • Man-In-The-App
  • Malware
  • Data-at-Rest Theft
  • OS Vulnerability Exploits
Case study: Star Finanz

Learn how a german market leader stays ahead of malicious software with Promon SHIELD™.

Protect Your App

Runtime App Self-Protection (RASP)

Promon SHIELD™ is a security add-on providing self-protection abilities to services and app(lication)s. This is the category that GARTNER defines as Runtime Application Self-Protection (RASP).

With Promon SHIELD™ the app is self-protecting and protection is restricted to the application only. With Promon SHIELD™ the attack is blocked by the application itself and the application continues to operate securely.

  • Secure data at rest
  • Blocks both known and unknown threats
  • Detect and defend against the evolving mobile threats
  • Respond immediately to attacks to prevent mobile breaches
Our customers buy because

Strong authentication

Authentication alone is not enough – protecting both the authentication and the banking app from within the application is essential!

Secure mobile payment

Token servers etc. cannot see the difference between a legitimate or a modified app. Promon SHIELD™ protects sensitive payment data, without leveraging the secure element.

Prevent Malware-driven attacks

Malware are designed to steal customer data and transfer money. Detecting and blocking malware from the inside of an application reduces fraud and false positives.
Easy deployment!

You can easily turn your banking and payment apps into a self-protecting app. Your apps can be quickly uploaded and secured in minutes by using our integration tool, or an SDK that is easily integrated in the app. Once secured, the app is immediately ready for distribution via public app stores.

Easy deployment
Product features

PROTECT

Protect against compromise

Code obfuscation
App binding
Repackaging detection
App communication
TLS certificate pinning
Client authentication using a client-certificate
Identifying the app/device as an authentication factor
Store data encrypted inside the app
Binding the data to be encrypted to the device
Whitebox cryptography
App Management Solution
Trusted binding between a user, an app and the device
Making the app trusted without external security tokens
Registration / activation – securely pair the app / device with the user.

DETECT

Detect attacks at runtime

Ensure app is running in safe environment
Debugger detection
Jailbreak / Root detection
Emulator detection
Ensure app is not altered or tampered with (e.g. by malware) at runtime
Checksum
Resource verification
Hook detection

REACT

React to ward off attacks

Shutdown (Exit / Fail)
Integrity checking
Custom reactions
Screenshot detection / blocking
Anti keylogging
Anti screenreading
Alert / reporting
Blocking external screens
Prevent brute force decryption of sensitive information

Understand the benefits of strong software authentication combined with app hardening

Learn why software authentication for mobile banking grows in popularity, along with the evolving risk landscape.