Important Notice: This demonstration of eKaay TAN is basically from 2008, see for example this
In the meantime we got convinced that online banking money transfers
should not be secured by a smartphone app, because of smartphone malware. Note that a smartphone is - in the end - an insecure device.
Nevertheless, the built-in signing functionality of eKaay may be used for less critical applications, like payment of small amounts, see this QR-Code Payment Demonstration.
Remark. In the meantime, many banks are actually using the smartphone in order to secure money transfers, like Commerzbank (PhotoTAN/app version) and Sparkasse (PushTAN). They seem to take the risk ... until the damage becomes too large ...
The eKaay TAN method protects online transaction, like online money transfers, against manipulation by trojans.
Likewise, the data of an online auction offering or the data of
an SAP online business transaction could be protected against manipulation. Any Western language may be used -
it is just required that the transaction data can be described by ASCII symbols (not more than 100 of them): the ASCII text is what will be shown on the
user's mobile and what will be confirmed by the user.
Concept: B.Borchert, K.Reinhardt, 2007. Patent for the 2-factor version granted.