buy metformin online

SIM Vendors Promote ‘Open API’ for NFC Phones; Google Not Yet Onboard

Nov 30 2011 (All day)

NFC phone software from SIM vendor group the SIMalliance that helps phone app developers tie into the secure elements on NFC phones is getting strong support from mobile operators but not from Google, at least not yet.

The SIMalliance, which just released a second version of its “Open Mobile API,” said some handset makers have already incorporated the API, which it calls a “de facto standard” for NFC phones.

The application-programming interface has the endorsement of the GSM Association, the trade group representing most mobile operators worldwide. The GSMA sees the API as a standardized way for developers to access payment or other secure applications on SIM cards as they build apps that could run in NFC mobile wallets on Android phones.

It remains to be seen whether the Open Mobile API favors the SIM as the de facto secure element in NFC phones.

The SIMalliance, which represents such large SIM card suppliers as Gemalto, Oberthur Technologies and Giesecke & Devrient, says it doesn’t. The API offers a common way for developers to connect their phone apps not only to SIMs but to other secure elements, such as embedded chips and microSD cards, said the group. And it works not just for Android but for other mobile operating systems, as well, it said.

The API also could bring more app developers into the NFC ecosystem by giving them a more straightforward way to build the user interface apps for payment, corporate ID, transit ticketing and other secure applications that run on secure elements, said SIMalliance chairman Frédéric Vasnier, a senior vice president at Gemalto.

“We are proposing an automatic sewing machine to someone who doesn’t know how to sew,” he told NFC Times. “You don’t have to be a specialist in SIM or in microSD or in (the) embedded secure element when you are a developer.”

Of course, not just any developer of apps in the Android Market or other app stores would be able to build apps that connect to the secure elements in NFC phones.

They would have to get the signing keys to access the secure chips from the owner of the secure elements, which would be the mobile operator for SIMs, and usually the handset maker or telco for embedded secure elements. They might also be able to get permission to access the secure element from a service provider, such as a bank.

These are the apps that run on the handset and tie into corresponding applications on SIMs or other secure elements, such as payment applications supporting MasterCard PayPass. The applications on secure elements are built by an even more specialized group of developers, usually from smart card companies.

Without the SIMalliance's API, the handset app developers, even with the necessary signing keys, need to “re-engineer” apps for each NFC model and each operating system, said the vendor group.

Among handset makers that have incorporated the Open Mobile API is Samsung Electronics for its Galaxy S II. The GSMA included the API in the second version of its NFC Handset APIs and Requirements document, which it encourages mobile operators to use when they order NFC phones.

“I don’t know of any MNO (mobile network operator) who is not requesting it (API),” Vasnier said.

Google and RIM Not Yet Onboard
But the backers of the SIMalliance API do not apparently include Google or Research In Motion, yet. Neither Google’s Android operating system nor RIM’s BlackBerry OS 7 platform incorporates the API.

Without being part of the platforms, mobile operators have to specify the API for each NFC model they order.

Google already has an API to access secure elements in its Gingerbread and more recent updates to its Android operating system, which support NFC. But it does not publish the API. And Google keeps even tighter control over the API to develop secure Google Wallet apps that run on its own Nexus S 4G. This is the only phone model so far that supports the Google Wallet.

“For security reasons, we do not plan to publish APIs to control the secure element in the Nexus S,” a Google spokesman told NFC Times. “However, Google Wallet is an open commerce ecosystem, and we will work with any bank, carrier, network, to include them in Google Wallet.”

The API for accessing the secure elements in Android phones is not published in general, not only for Google’s own Android phones, said Michael Roland, a researcher for the NFC Research Lab, Hagenberg. But he doesn’t find that surprising, since only a small subset of all app developers would be called upon to develop apps tied to secure elements. 

“For the moment, I expect that Google will try to keep access to the secure element closed (unpublished),” he told NFC Times. “There are simply too many unresolved problems and difficulties if every developer has access to this API.”

Among those potential problems are security concerns.

Update: Germany-based Stollmann, an NFC middleware provider that led an unsuccessful effort late last year for adoption of an open NFC API for Android phones, said incorporating the SIMalliance's Open Mobile API into Android is ultimately Google's decision.  

“I don’t think Google is blocking anything specifically,” Christian Andresen, head of NFC at Stollmann, told NFC Times. “Maybe they are not activley supporting the approach.” He added that Google's interest in NFC for the Android platform goes beyond smartphones: “Google has a bigger picture for NFC usage across various devices, which is not SIM-centric. They have to support more than one initiative.” End update.

But the GSM Association doesn’t like the fact that Google declines to publish an API for developers to access secure elements in Android NFC phones its members might buy. That is unlike, for example, feature phones that run Java software and use the freely available JSR 177 API to access secure elements, it says.

The association, in its NFC handset requirement specifications, said it expects Android to eventually get a (published) API for accessing secure elements and urged the keepers of Android, which would be Google, to adopt the Open Mobile API.

SIMalliance’s Vasnier said he doesn’t know why neither Google nor RIM have yet to adopt the group’s API, though he suggested it might relate to when the API became available. The SIMalliance introduced the first version of the API in April.

He doesn’t expect Google to use the vendor group’s API for its own NFC phones, however.

“Google for its own Google Wallet has its own proprietary APIs that they do not disclose to developers, and they are implementing that in their Nexus devices,” he said.

API Favors SIMs?
Of course, large mobile operators have their own plans for rolling out NFC mobile wallets, based on the SIM cards they issue, and they see Google as a competitor.

In its NFC handset APIs and requirements, the GSMA mandates that in NFC phones supporting multiple secure elements, such as SIMs and embedded chips, the SIMs should be the default secure elements. And the GSMA specs also include an option for operators to require that devices support the SIM to the exclusion of all other secure elements. Telcos could include these requirements in their tender documents to handset makers.

The SIMalliance’s Vasnier acknowledges that the Open Mobile API could support the requirement that the SIM become the default secure element in NFC phones with multiple secure chips.

But he contends the API does not favor SIM cards over other secure chips in NFC phones.

“The API is just offering the same type of access, whatever the secure element: SIM, embedded secure element, microSD,” he said.

HEADLINE NEWS

Taiwan Telco Group Goal of 2014 TSM Launch May be Hard to Reach; NFC SIM Footprint Also Small

Taiwanese mobile operators have sold a combined 4.2 million NFC-enabled phones and hope to launch their joint TSM platform by the end of the year.

China UnionPay Strikes Deal with ZTE to Use Embedded Chips for Payments

Payment network China UnionPay and China-based handset maker ZTE have disclosed an agreement to enable contactless payment on embedded chips in two of ZTE’s latest high-end Android phones.

Hungary Concludes Year-Long NFC Trial, Prepares for Commercial Launches

As the Hungarian Mobile Wallet Association prepares to enable its members to commercially launch NFC mobile payments, it has released the results of its 12-month NFC payments and loyalty pilot along with a survey of users.

Swiss Telcos to Share Tapit NFC Mobile Wallet Platform

Swiss telco Swisscom has launched an NFC mobile wallet app called Tapit, with the country’s two other major telcos expected to follow later in 2014.

Airlines Continue to Test NFC for Boarding; BLE Piloted for Airport Navigation

France-based telco Orange and Air France, along with airline industry and information technology services provider SITA have launched a trial of an NFC boarding pass application for the airline’s route from Toulouse to Paris, and SITA is also piloting Bluetooth low energy beacons at Dallas/Fort Worth International Airport.

Visa, MasterCard to Offer HCE Services to Banks, as They Seek to Expedite Rollout of Technology

NFC Times Exclusive: Both Visa and MasterCard plan to offer their own HCE services to banks and other issuers to help the financial institutions launch host-card emulation, as the payment networks continue to try to expedite the rollout of HCE technology for NFC mobile payments, NFC Times has learned.

BBVA’s Pioneering HCE Service: Payments Innovation Head Talks Tokens, Reasons for Shunning SIMs

NFC Times Exclusive: Host-card emulation represents an “inflection point” for driving the rollout of NFC mobile payments and could also help the SIM-based NFC ecosystem to become more efficient and less costly, the head of payments innovation for major Spanish bank BBVA told NFC Times.

Canada Sees More NFC Commercial Launches with SIMs, but Market Remains Unsettled

Jul 15 2014 (All day)

NFC Times Exclusive: With its high rate of smartphone ownership, strong contactless-payment infrastructure and well-developed NFC ecosystem, Canada is increasingly seen as a market to watch for NFC commercial deployments.

Spanish Bank BBVA Announces Commercial Launch of HCE-Based Payments

Jul 1 2014 (All day)

Spanish bank BBVA is claiming to be the first bank to commercially launch payments with host-card emulation, announcing today an upgrade of its Android mobile-wallet app incorporating Visa’s HCE specifications.

Russian Bank Launches Delayed PayPass Service on Embedded Chips in Two Samsung NFC Models

Russian Standard Bank launched its long-planned NFC-payments service on embedded chips in Samsung NFC devices, under an earlier partnership deal between Samsung Electronics and MasterCard Worldwide.

Next Android Operating System to Support Enhancements to HCE

The next major Android upgrade, code-named Android L, includes changes to the way host-card emulation handles default applications for payment, according to a developer preview.

French Group Drops Cityzi Mark; Incorporates EMVCo Contactless Symbol in New Logo

Jun 27 2014 (All day)

France’s mobile-operator-led NFC association, AFSCM, has dropped its long-held NFC logo and touchpoint symbol for nonpayment services, Cityzi, in favor of on logo based on EMVCo’s contactless-payment acceptance mark.