Article Content
Article Number | 000037684 |
Applies To | RSA Product Set: SecurID RSA Product/Service Type: Software Token Platform: iOS, Android |
Issue | I want to know if the RSA SecurID Token app for Android and iOS utilize a Trusted Execution Environment (TEE) in any way. |
Resolution | The RSA SecurID Token app for Android utilizes the Android hardware-backed keystore to protect its key material. This keystore uses a Trusted Execution Environment (TEE) or Secure Element (SE) depending on the device model. Keys in the TEE or SE cannot be exposed or exported. The RSA SecurID Token app for iOS utilizes the keychain services to protect its key material. The keychain is in turn protected using a hardware-backed key in the iPhone/iPad secure enclave. |
Notes | For more information, you may refer to the official iOS Security and Android Security documentation. |