Mobile PKI

The use of online banks and other digital services require uncompromised security. At the same time, reaching the broadest possible user base necessitates utmost ease of use. As noted by service providers and users alike, reaching both objectives is a difficult task.

The number of user names and passwords required for different internet and mobile services is touching the limit. An increasing number of online services bring a variety of code lists, smart cards, USB tokens – all of which need to be carried along in order to enable flexible use when and where needed.

The plentiful and dispersed practices lead to higher risks of human error and misplacement, and increase the odds for successful phishing attempts. In order to secure and streamline the use of online services, the multitude of authentication and confirmation methods need to be either replaced or integrated. The market calls for a digital ID that is easy to use and easy to carry.


With the market-leading SIM-based and Token-based Mobile PKI provided by SAVIS, the users can securely authenticate themselves and legally sign documents as well as transaction wherever needed, just by using their mobile phone and a simple PIN code or fingerprints. The two-factor, two-channel security solution works in every mobile phone, both simple ones and smartphones, with a SIM card, Mobile Token and secure elements inside. The new breed of Mobile PKI replaces the need for a multitude of passwords and tokens.

The Mobile PKI solutions by SAVIS are typically deployed by mobile operators, banks and government organisations, offering the Mobile PKI as a service to their customers. Mobile PKI offers distinctive advantages over other methods:

  • Transactions are signed using a method that complies with the EU electronic signature directive and makes the signatures legally binding; both advanced and qualified signatures can be enabled with the solution. In most cases an advanced signature can be accepted as legal proof.
  • Signing keys are stored in the secure SIM card that is installed into phone.The keys are protected using the separate PIN codes and user has total control over the keys.
  • Most secure, surpassing the required EAL4+ level and going as high as EAL5 and FIPS 140-2 level 2
  • The transaction and the identity of the user are protected against even the most sophisticated attacks. Pretending to be someone else requires access to both the service and the operator network. This is not an easy task to do.

Simple activation

Activating Mobile PKI is as easy as downloading an app and reading a QR code. From this moment on, the user can stop using their old authentication system.

Secure identity

System based on PKI technology that requires a fingerprint or PIN to use the keys. Furthermore, the credentials are linked to the mobile, which safeguards against the cloning of private keys.

Standard integration

Integration is performed using current Web standards. Authentication and remote signing can be integrated via Web API. Mobile PKI is also available in SDK format for integration in your app.

Multi-device support

Can operate on any device (mobile, PC, WebTV, etc.) without the need for additional software or hardware. The user simply receives a push notification on their mobile when they have to authenticate or sign something.

Corporate branding

Customizable app design. Brand enhancement via the incorporation of a corporate element for authenticating and signing in the mobile device of the employee/client/citizen.