HUAWEI Browser is a secure and easy-to-use mobile browser provided by Huawei. It leverages Huawei's accumulated technological prowess to provide seamless web browsing, convenient searching, and comprehensive privacy safeguards, thereby attracting a vast and diverse user base. Users can search for and browse web pages, as well as sign in to their personal accounts using HUAWEI Browser.
ChallengeWhen a user uses HUAWEI Browser to sign in to a website (such as an enterprise website) by entering the password manually, it is a time-consuming process and the user may even forget their password. Therefore, it is essential for the browser to provide other convenient ways of signing in to improve user experience.
SolutionBy integrating FIDO, HUAWEI Browser allows users to sign in to a website via fingerprint or facial authentication after the user enables fingerprint or facial sign-in when signing in to the website for the first time. This offers users a better sign-in experience. In addition, FIDO uses the system integrity check result as the prerequisite for authentication, ensuring that sign-in authentication is performed in a more secure device environment.
{
"lightbox_close": "Close",
"lightbox_next": "Next",
"lightbox_previous": "Previous",
"lightbox_error": "The requested content cannot be loaded. Please try again later.",
"lightbox_start_slideshow": "Start slideshow",
"lightbox_stop_slideshow": "Stop slideshow",
"lightbox_full_screen": "Full screen",
"lightbox_thumbnails": "Thumbnails",
"lightbox_download": "Download",
"lightbox_share": "Share",
"lightbox_zoom": "Zoom",
"lightbox_new_window": "New window",
"lightbox_toggle_sidebar": "Toggle sidebar"
}
(Enter the website address in HUAWEI Browser >> Choose to enable fingerprint or facial sign-in >> Once enabled successfully, sign in with fingerprint or facial authentication)
ResultsUsers can sign in to websites using HUAWEI Browser in a more secure environment.
HUAWEI Browser provides a more convenient authentication experience.
For more details, you can go to:
l Our official website
l Our Development Documentation page, to find the documents you need
l Experience the easy-integration process on Codelabs
l Submit a trouble ticket online for any problems during integration
l Reddit to join our developer discussion
l GitHub to download demos and sample codes
l Stack Overflow to solve any integration problem
Original Source
Related
This article is originally from HUAWEI Developer Forum.
Forum link: https://forums.developer.huawei.com/forumPortal/en/home
What Is Huawei Machine Learning kit?
Huawei Machine Learning Service (ML Kit) provides machine learning suites to provide high-quality experience for developers to develop various applications using machine learning capabilities. Thanks to Huawei's long-term technical accumulation, the ML Kit provides developers with easy-to-use, diversified services, and cutting-edge machine learning capabilities, helping developers quickly and better develop various AI applications.
For details about MLkit, see Introduction to MLkit:
https://developer.huawei.com/consumer/en/doc/development/HMS-Guides/ml-introduction-4
How to Integrate Huawei Machine Learning Service
Huawei Machine Learning Service Integration Guide:
https://developer.huawei.com/consumer/en/doc/development/HMS-Guides/ml-process-4
Releasing an Huawei AppGallery
For details about the development process, see the following attachment:
https://developer.huawei.com/consumer/en/doc/development/HMS-Guides/ml-process-4
If you have completed the development and want to release the Huawei AppGallery, perform the following steps:
{
"lightbox_close": "Close",
"lightbox_next": "Next",
"lightbox_previous": "Previous",
"lightbox_error": "The requested content cannot be loaded. Please try again later.",
"lightbox_start_slideshow": "Start slideshow",
"lightbox_stop_slideshow": "Stop slideshow",
"lightbox_full_screen": "Full screen",
"lightbox_thumbnails": "Thumbnails",
"lightbox_download": "Download",
"lightbox_share": "Share",
"lightbox_zoom": "Zoom",
"lightbox_new_window": "New window",
"lightbox_toggle_sidebar": "Toggle sidebar"
}
1. To apply for an account, visit the HUAWEI Developer official website at https://developer.huawei.com/consumer/en/,and register an account using an email address or mobile number.
After the registration is complete, you need to perform real-name authentication. After logging in to your account, click to access the management center in the upper right corner.
You can select individual authentication or company authentication based on your account type.
1.1 Individual developer authentication: You need to use your ID card number and bank card number for authentication. (Note: If you have authenticated another account, you cannot use your own account for authentication.) For details, see the requirements on the website.
1.2 Enterprise developer authentication: For enterprises in China, you need to prepare information such as the unified social credit code, account opening bank, and business account. For enterprises in foreign regions, you need to prepare information such as the legal entity name, company address, business license, and public bank account. For details, see the requirements on the website. Note that enterprise certification may take about two working days.
2 Whether to release your app globally: You can determine whether to release your app globally based on your application.
3 Whether to integrate cloud services: MLKit provides cloud and device services. For details, see the following:
https://developer.huawei.com/consumer/en/doc/development/HMS-Guides/ml-introduction-4
For details about other operations, see the status bar on the left of the page.
Any questions about this process, you can visit HUAWEI Developer Forum to acquire answers.
Imagine that one of the players for your game has spent a lot of time and effort becoming an advanced player, but is then unable to use his/her props, level, or points in the game on a new device, simply because they are not signed in to their account. The user would need to start from scratch, which could be so frustrating that they'd opt to uninstall the game. Account Kit can help you avoid this nightmare scenario, by enabling your game to share its digital assets across devices.
{
"lightbox_close": "Close",
"lightbox_next": "Next",
"lightbox_previous": "Previous",
"lightbox_error": "The requested content cannot be loaded. Please try again later.",
"lightbox_start_slideshow": "Start slideshow",
"lightbox_stop_slideshow": "Stop slideshow",
"lightbox_full_screen": "Full screen",
"lightbox_thumbnails": "Thumbnails",
"lightbox_download": "Download",
"lightbox_share": "Share",
"lightbox_zoom": "Zoom",
"lightbox_new_window": "New window",
"lightbox_toggle_sidebar": "Toggle sidebar"
}
Gameloft, an acclaimed and award-winning game publisher, has chosen to integrate Account Kit. Now Gameloft game apps allow for sign-in via one-click authorization on new devices, after which digital assets owned by the user, and linked to the user's HUAWEI ID, can be accessed on the new device. This has substantially enhanced user experience and user loyalty, by integrating Account Kit and other services like In-App Purchases, the game apps not only bring high-quality gaming experience to AppGallery users, but also see a great increase of their own downloads.
In addition, Account Kit incorporates two-factor authentication and facial or fingerprint sign-in technologies, and complies with international standards such as OAuth 2.0 and OpenID Connect, to keep user data and privacy under lock-and-key. A lot of financial apps from around the globe have integrated with Account Kit after their rigorous internal evaluation and have released the new version, due to the kit's formidable security and privacy protection capabilities.
More than 900 million users in 190+ countries and regions use HUAWEI IDs, a massive, global user base that can expand the reach and audience for your app to unexpected new heights. Account Kit will continue to upgrade to serve as an intuitive and accessible method of entry to your apps, helping you attract and retain users with unprecedented success.
For more information, please visit:
Account Kit Development Guide:
https://developer.huawei.com/consum.../introduction-0000001050048870?ha_source=hms1
Account Kit Codelab:
https://developer.huawei.com/consumer/en/codelab/HMSAccounts/index.html#0?ha_source=hms1
Overview
iCard is a popular mobile wallet app in Bulgaria. Backed by over 12 years of industry experience and a large user base, iCard provides services such as bank card management, collection and payment, international transfers, and foreign currency exchange for more than 30 countries and regions in Europe. How to ensure user account and transaction security and prevent itself from being attacked on risky devices have always been the key challenges of iCard.
{
"lightbox_close": "Close",
"lightbox_next": "Next",
"lightbox_previous": "Previous",
"lightbox_error": "The requested content cannot be loaded. Please try again later.",
"lightbox_start_slideshow": "Start slideshow",
"lightbox_stop_slideshow": "Stop slideshow",
"lightbox_full_screen": "Full screen",
"lightbox_thumbnails": "Thumbnails",
"lightbox_download": "Download",
"lightbox_share": "Share",
"lightbox_zoom": "Zoom",
"lightbox_new_window": "New window",
"lightbox_toggle_sidebar": "Toggle sidebar"
}
Challenges
Risky devices undoubtedly affect app systems and users alike. Martin Dimitrov, head of mobile development team in iCard, said, "Jailbreak and root processes essentially alter the operating system and its security level. The more change that the operating system tolerates, the greater the likelihood that a legitimate app will be vulnerable after a device is jailbroken or rooted."
If a user is unaware that their device has been tampered with and signs in to and uses an app on the device, their account and personal data may be at risk and it can be difficult to check the system integrity of devices. iCard needs to integrate a powerful detection capability to check whether the device running the app is risky.
Solution – integrating SysIntegrity API
Fortunately, by integrating the SysIntegrity API of HUAWEI HMS Core Safety Detect Kit, iCard can quickly check whether the device is secure or rooted during user sign-in. SysIntegrity is free for developers to use and works using the Trusted Execution Environment (TEE), and helps app developers build security capabilities to protect user privacy and app security through tamper-proof and reliable check results.
Risk prevention, starting from App login
Martin Dimitrov said, "With SysIntegrity integrated, our app can detect risks once a user signs in to it on a rooted device, and it will then show a security warning to notify the user of possible risks, such as financial losses and information leaks." Furthermore, it only takes 1 person-day to integrate SysIntegrity.
(iCard app displays a message indicating that the phone is risky.)
Martin Dimitrov added, "After integrating SysIntegrity, the instances of risky sign-in on rooted phones have been reduced by around 10% which is a really good number. And we can also make the development process more convenient and efficient."
Results
The instances of risky sign-in on rooted devices reduced by about 10%.
User accounts and transactions are now well safeguarded.
Find out more on:
Huawei developers official page
Experience the easy-integration process on Codelabs
Submit a trouble ticket online for any problems during integration
Rediit: https://www.reddit.com/r/HuaweiDevelopers/
Github: https://github.com/HMS-Core/hms-safetydetect-demo-android
Stack Overflow: https://stackoverflow.com/questions/tagged/huawei-mobile-services?tab=Newest
Very interesting Security.
Together with the HUAWEI ID that provides an easy and secure sign-in and authorization function for more than 1 billion users to access apps after signing in to a phone, tablet, or smart TV with a HUAWEI ID, FIDO endows the HUAWEI ID with more secure and convenient identity authentication capabilities.
Why Does HUAWEI ID Use FIDO?
Conventionally, users need to sign in to their HUAWEI IDs by entering their IDs and passwords, which is time-consuming and inconvenient. To facilitate sign-in, the HUAWEI ID gradually offers multiple authentication modes to serve users with different needs. FIDO provides the password-free fingerprint and facial authentication capabilities, which frees users from the hassle of traditional password-based sign-in, as well as prevent the risk for password leakage. In addition, the system integrity check and key verification mechanism are used to ensure that the authentication results are secure and reliable, and 3D facial recognition makes facial authentication more accurate.
What Does FIDO Bring to the Table?
FIDO provides your app with the FIDO2 client. You can build a secure and easy-to-use password-free authentication capability in your app by using FIDO2 and a third-party FIDO server.
FIDO is a comprehensive authentication framework launched by the FIDO Alliance in compliance with the European GDPR regulations and uses the system integrity check result as the prerequisite for authentication. As such, before performing sign-in authentication, FIDO will call SysIntegrity to check whether the device system has been maliciously tampered with (for example, whether the device is rooted) to ensure that the user can sign in to their HUAWEI ID on a secure device.
Specifically, once a user enables fingerprint or facial authentication after signing in to their HUAWEI ID on their device, they can quickly sign in through fingerprint or facial authentication. This simplifies complex authentication for repeated sign-ins on the same device. If SysIntegrity detects that the user's device is rooted, the message "Your device has been rooted. Continuing to use HUAWEI ID may pose a security risk." will be displayed on the device to notify the user, thus safeguarding user sign-in security.
{
"lightbox_close": "Close",
"lightbox_next": "Next",
"lightbox_previous": "Previous",
"lightbox_error": "The requested content cannot be loaded. Please try again later.",
"lightbox_start_slideshow": "Start slideshow",
"lightbox_stop_slideshow": "Stop slideshow",
"lightbox_full_screen": "Full screen",
"lightbox_thumbnails": "Thumbnails",
"lightbox_download": "Download",
"lightbox_share": "Share",
"lightbox_zoom": "Zoom",
"lightbox_new_window": "New window",
"lightbox_toggle_sidebar": "Toggle sidebar"
}
(Use fingerprint or facial authentication to sign in to your HUAWEI ID.)
For more details, you can go to:
l Huawei developers official page
l Experience the easy-integration process on Codelabs
l Submit a trouble ticket online for any problems during integration
l Our official website
l Our Development Documentation page, to find the documents you need
l Reddit to join our developer discussion
l GitHub to download demos and sample codes
l Stack Overflow to solve any integration problems
Original Source
MyIE is an intuitive browser app that provides users in China and Singapore with fast and secure browsing services, free of ads or push messages. Users can also scan QR codes to visit target URLs through the app.
{
"lightbox_close": "Close",
"lightbox_next": "Next",
"lightbox_previous": "Previous",
"lightbox_error": "The requested content cannot be loaded. Please try again later.",
"lightbox_start_slideshow": "Start slideshow",
"lightbox_stop_slideshow": "Stop slideshow",
"lightbox_full_screen": "Full screen",
"lightbox_thumbnails": "Thumbnails",
"lightbox_download": "Download",
"lightbox_share": "Share",
"lightbox_zoom": "Zoom",
"lightbox_new_window": "New window",
"lightbox_toggle_sidebar": "Toggle sidebar"
}
Challenges
Malicious URLs, such as phishing and fake website links, can trick users into revealing their private information or even transferring money. It can be difficult for users to determine whether a QR code directs to a legitimate website, or to one that presents phishing and fraud-related risks. If the app directly accesses a malicious website after scanning the QR code, the privacy and property of the user may be at risk.
Therefore, it is essential for browser apps to identify malicious URLs before users access them. On the basis of enhancing user privacy security and optimizing user experience, MyIE requires a solution that could quickly evaluate the type of risk associated with a URL users attempt to access, and warn the users of the risk in advance, to ensure secure, stable, and reliable browsing services.
Solutions
With URLCheck in Safety Detect, MyIE can automatically call the URLCheck API to check whether the URL associated with a scanned QR code is risky. If the URL to be accessed presents risks to the user, MyIE displays a popup on screen for 4 seconds, warning the user, so that the user can operate carefully or close the page.
"This API has improved the security capabilities of MyIE by 80%", noted Guo Feng, the chief technical officer (CTO) for MyIE. Mr. Guo added, "We've been able to offer a much better overall user experience. With popup messages, users can learn in real time whether the URL accessed through a QR code is secure. The check is fast and the results are accurate, free of false positives that would interfere with normal browsing, and user satisfaction has improved by 30%."
Results
Service security was enhanced by 80%.
User satisfaction was improved by 30%.
For more details, you can go to:
l Huawei developers official page
l Experience the easy-integration process on Codelabs
l Submit a trouble ticket online for any problems during integration
l Our official website
l Our Development Documentation page, to find the documents you need
l Reddit to join our developer discussion
l GitHub to download demos and sample codes
l Stack Overflow to solve any integration problems
| Original Source