White-label self-care, native
MVVM + Clean Architecture across iOS and Android. Cache-first repositories, Room/CoreData persistence. Wired to TMF654, 620, 622, and 621.
Mobile & Device Services
Branded customer apps that pass a security audit on day one. Native iOS and Android self-care, eSIM activation by tap, and a defensive posture that takes telco threat models seriously — hardware-backed token storage, certificate pinning, and OAuth 2.1 PKCE on every flow.
StandardsOAuth 2.1 + PKCE (RFC 7636)GSMA SGP.22 (eSIM)iOS Keychain / Android KeystoreWCAG 2.1 AA
Defensive posture by default
OAuth 2.0 + PKCE per RFC 7636. Tokens in iOS Keychain or Android EncryptedSharedPreferences with hardware Keystore. SPKI certificate pinning.
eSIM activation as onboarding
QR, universal link, or in-app deep link. Android EuiccManager, iOS CTCellularPlanProvisioning. LPA talks to your SAS-SM SM-DP+; profile lands and the user is online.