# Security

## Biometric Authentication

For end-user app security we enable biometric authentification using any available option on the phone : \
\- Face \
\- FingerPrint \
\- Weak or Strong biometric (depending on availability).

### Secure Storage

*\[For our customers who have chosen this option for Key Management]*\
For protecting the end-user private key and seed phrase, the secret data is stored in the phone using : \
\- Keychain for iOS devices. [More information here](https://developer.apple.com/documentation/security/keychain_services#//apple_ref/doc/uid/TP30000897-CH203-TP1).\
\- AES encryption is used for Android devices. AES secret key is encrypted with RSA and RSA key is stored in KeyStore (more info here on [Android KeyStore system](https://developer.android.com/privacy-and-security/keystore)) 

### Spam Token

To protect the end-user from interacting with spam tokens, we maintain a database of spam token (manuel + De.Fi Scanner integration) so that we hide those token from the portfolio and flag the receive transaction in the transaction history.