Trusted Device Criteria
To ensure the security and proper functionality of the tapXphone, the following criteria must be met for a device to qualify as trusted:
Device State Requirements
The device must not:
Have an Unlocked Bootloader:
The bootloader must be locked.
For more information on locking the bootloader, see here.
Be Rooted:
The device must not have root access (the user must not have root privileges).
Have SELinux Disabled or Permissive:
SELinux must be set to "enforcing" mode. Devices with SELinux in "disabled" or "permissive" mode are not secure and will be blocked.
For more information on SELinux in Android, see here.
Be in Developer Mode:
How to check:
Method 1: Open "Settings," go to "About phone" or "About tablet," find the "Build number" section (or "MIUI version" on Xiaomi devices), and tap it. If developer mode is enabled, you'll see a confirmation message.
Method 2: Open "Settings," select "For Developers" (or "Advanced > For Developers"), and ensure the "Developer Mode" switch at the top is turned off.
Be in Debug Mode:
How to check:
Method 1: Open "Settings," select "For Developers" (or "Advanced > For Developers" on some devices). In the "Debug" menu, ensure "USB/Wi-Fi Debugging" is not activated.
Method 2: Connect the device to a computer and ensure no "USB/Wi-Fi Debugging enabled" notification appears on the smartphone.
Pass Google Play Integrity API Checks:
The device must successfully pass the Google Play Integrity API check with the MEETS_STRONG_INTEGRITY status.
How to check:
To verify the integrity verdict on your device, follow these steps:
Enable Play Store's developer options by tapping your profile icon in the Play Store app, then selecting Settings.
Open the About menu and tap Play Store version seven times to unlock developer mode.
Open the Play Store app, tap your profile icon, then go to Settings > General > Developer options.
In the Play Integrity settings, tap Check integrity to generate the verdict for the device.
For more detailed instructions, see here.
Contain Apps Violating Google's Software Principles:
Apps installed on the device must comply with Google's Software Principles and Unwanted Software Policy.
How to check Google Play Protect status: see here.
Application Installation Source
The application must be downloaded and installed only from the Google Play Store.
Installation from other sources is strictly prohibited, as it violates the License agreement.
Safe Usage of the tapXphone
When using the tapXphone, the user must not:
Allow Screen Overlays:
Apps or system functions (e.g., messengers) that overlay the tapXphone screen must be turned off during transactions.
If a message about restricted usage appears, follow the steps here.
Use Split Screen or Broadcast Modes:
Do not activate split-screen mode or use broadcast functionality from the mobile device.
Use the Camera in Unintended Ways:
Background apps with camera access must be closed during a transaction.
Disable system functions that keep the screen active due to constant background camera usage (e.g., Face ID features).
Take Screenshots or Record Videos:
Screenshotting or screen recording is prohibited while using the application.
Turn Off Previously Granted Permissions:
Ensure that all required permissions remain active for the application.
Use Remote Control Applications:
Applications like TeamViewer or AirDroid are not allowed.
NFC Requirements
The device must have:
A functional embedded NFC module.
NFC configured to read cards.
How to check:
Open "Settings," go to "Connection and Sharing," and ensure NFC is turned on.
If there is an option to choose between "SIM" and "e-wallet," select "e-wallet."
Security Recommendations
OS Updates: Regularly update the device’s OS and components to ensure the latest security improvements.
Trusted Apps: Only download apps from trusted vendors in the Play Store, verified by Google Play Protect.
Malware Detection: Install and update malware detection tools to protect the device.
Last updated