Abstract: A method for providing a secure user interface on a computing device comprising: receiving, from a user application, a request to utilise a secure user interface on the computing device; obtaining, by a first countermeasure module, first information associated with a security context of the computing device; generating, by the first countermeasure module, a first security assessment based on analysis of the first information; determining, by a security determination module, whether to permit the request to utilise the secure user interface based on the first security assessment; and responsive to a positive determination, enabling access by the user application to the secure user interface.

Abstract: A software decryption key is injected into a computing device 2 having a secure execution environment 20 and a less secure execution environment 22. The key 38 is for decryption of software to be run on the computing device. A key injection software component 36 executed within the secure execution environment 20 is used to control storage of the software decryption key 38 in a protected state in which the software decryption key is unreadable in the clear from the key storage location by an external device or by program code executed in the less secure execution environment 22 of the computing device. Software provided to the device is decrypted based on the injected software decryption key 38.

Abstract: A software decryption key is injected into a computing device 2 having a secure execution environment 20 and a less secure execution environment 22. The key 38 is for decryption of software to be run on the computing device. A key injection software component 36 executed within the secure execution environment 20 is used to control storage of the software decryption key 38 in a protected state in which the software decryption key is unreadable in the clear from the key storage location by an external device or by program code executed in the less secure execution environment 22 of the computing device. Software provided to the device is decrypted based on the injected software decryption key 38.