1) Secure Capture — Real-Time, On-Device, No Storage

1) SIM Change Detection (Android)

~~Subtitle:~~Purpose
Analyze ~~Detect~~frames ~~SIM~~from ~~swaps~~the infront-facing ~~real~~camera ~~time~~entirely on device to ~~protect~~enhance ~~session~~fraud ~~integrity~~detection—no ~~and~~images ~~prevent~~are ~~account~~stored ~~takeover.~~

or
~~Overview~~transmitted; only metadata/results are sent
~~A lightweight background service monitors the device’s SIM state and reports changes to your STS backend. Typical statuses:~~ NO_CHANGE, SIM_CHANGED, UNKNOWN.

How it works

~~The~~App ~~SDK~~decides ~~periodically checks SIM state (with backoff~~when to ~~respect~~activate OS(e.g., ~~limits)~~after login, during a transfer, or only in high-risk flows).

OnstartCapture() ~~change,~~checks itcamera ~~sends~~permission aand ~~minimal,~~begins ~~signed~~periodic ~~payload~~frame ~~(status~~analysis +locally.
~~device/app~~
~~metadata)~~

Frames are processed on device; images are deleted immediately after analysis.

Only analysis results/metadata are sent to your backend.

~~Your~~Capture ~~risk~~ends ~~engine~~when ~~applies~~the ~~rules~~app ~~(e.g.,~~calls ~~step-up~~stopCapture(). ~~auth,~~
~~session revoke, temporary hold).~~
Secure_Capture_Feature_V1

~~SDK~~Required &permission ~~Permissions~~(AndroidManifest.xml)

<uses-permission
android:name="android.permission.CAMERA"/>
Android
~~telephony~~
~~state~~
~~permissions~~
~~per~~
~~OEM/OS version.~~

~~Event callbacks & webhook destinations configurable in~~ ~~STS Admin~~.

~~Security & Privacy~~

~~No sensitive content—only status and non-PII metadata.~~

~~Pseudonymize device identifiers; follow data-minimization policies.~~

~~Compatibility & Limitations~~

~~Android only; background restrictions apply on Android 10+.~~

~~Dual-SIM devices may require extra logic.~~

~~Not available on iOS.~~

~~Key Metrics (KPIs)~~

~~SIM change rate per 1,000 MAU.~~

~~Detection-to-action time (ms).~~

~~False-positive rate on Dual-SIM.~~

~~Integration Steps~~

~~Enable~~ ~~SIM Change Detection~~ ~~in STS Admin.~~

~~Add the STS SDK module + required permissions.~~

~~Implement the webhook endpoint to receive events.~~

~~Configure risk rules (e.g., block high-risk transactions within 24–72h after a SIM change).~~

~~Test on single-SIM and dual-SIM devices.~~

~~2) Secure Call Verification~~

~~Subtitle:~~ ~~Verify bank-initiated calls to stop social-engineering and number spoofing.~~

~~Overview~~
~~Before the user answers, the SDK checks whether an incoming call was initiated by your bank and is safe. It returns:~~ CALL_APPROVED, UNAPPROVED_RECENT_CALL, NO_RECENT_CALL, UNKNOWN.

~~Reference Architecture~~
~~Bank Call Center →~~ ~~STS Secure Call~~ ~~Backend → Mobile App SDK~~

~~API:~~ POST /api/v1/ReportCall ~~with~~ phone_number, uid~~, and context.~~

~~SDK method:~~ CheckCallStatus() ~~returning one of the statuses above.~~

~~UI Guidance~~

~~Approved: Green banner/badge + concise explanation.~~

~~Unapproved/Recently flagged: Yellow warning with “Verify identity.”~~

~~Unknown: Neutral gray with safety tips.~~

~~Security & Privacy~~

~~Transmit only minimal metadata needed for verification.~~

~~Log decisions for audit; avoid storing raw audio.~~

~~Use Cases~~

~~Confirming outbound bank calls before sharing sensitive info.~~

~~Closing the loop on suspected spoofing.~~

~~Key Metrics (KPIs)~~

~~% auto-approved vs. challenged calls.~~

~~Reduction in social-engineering incidents.~~

~~Decision latency (ms).~~

~~Integration Steps~~

~~Register call numbers & policies in~~ ~~STS Admin~~.

~~Integrate the SDK and show inline banners based on status.~~

~~Send~~ ReportCall ~~events to backend analytics.~~

~~Configure push alerts for “approved call in progress.”~~

~~Add in-app education (tooltips) about verified calls.~~

~~3) Secure Capture (Front Camera, Real-Time, No Storage)~~

~~Subtitle:~~ ~~On-device camera analysis with zero image storage and privacy-first design.~~

~~Overview~~
~~Secure Capture analyzes frames from the front-facing camera~~ ~~on-device~~ ~~and never stores or uploads images. Only analysis metadata is sent to your backend.~~

SDK ~~Methods~~methods & returns

startCapture() —→ ~~start~~SUCCESS ~~local~~| ~~analysis.~~MISSING_PERMISSIONS

stopCapture() —→ ~~stop analysis and clear buffers immediately.~~SUCCESS

UXUsage &example ~~Permissions~~(Kotlin)

val
result
Display= acollectorAgent.startCapture() clearif purpose(result statement== "MISSING_PERMISSIONS") { // Request CAMERA permission before capture.retrying } // ... perform secured flow ... collectorAgent.stopCapture()

UI guidance (pre-permission message)}

~~Request~~“To ~~camera~~enhance ~~permission~~security, ~~just-in-time.~~the app will analyze images from your device’s front-facing camera. No images are stored or uploaded.”

Security & ~~Privacy~~privacy notes

No ~~image~~images ~~transmission—~~ever leave the device; only ~~metadata.~~minimal metadata/results are transmitted.

Immediate buffer deletion after ~~analysis.~~analysis; follow data minimization best practices.

~~Use~~Common ~~Cases~~scenarios

~~Passive~~Post-login ~~liveness~~environment ~~signals for step-up auth.~~validation

~~Session~~Extra ~~anomaly~~check ~~detection~~during standard transfers

High-risk events (~~multiple~~new ~~faces,~~payee, ~~occlusions,~~unusually ~~spoof~~large ~~cues).~~amount)

~~Key~~Next ~~Metrics (KPIs)~~

~~On-device inference latency (ms).~~

~~Metadata event throughput (events/min).~~

~~False-positive rate on real users.~~

~~Integration Steps~~steps

~~Enable~~ ~~Secure Capture~~ in ~~STS Admin~~.

Add ~~the SDK module and declare camera~~CAMERA permission.

~~Implement~~2) ~~handlers~~Explain purpose to ~~receive analysis metadata.~~users.

~~Tune~~3) ~~thresholds/heuristics~~Integrate bystartCapture()/stopCapture() ~~client~~in ~~profile.~~the chosen flow(s).

~~Provide~~4) aHandle ~~concise~~permission ~~“Privacy~~gracefully. ~~Note”~~5) ~~explaining~~Roll ~~on-device~~out ~~processing.~~gradually and monitor analytics.