All Virtual Credentials are stored within an encrypted database on the local mobile devices. The solution uses a mixture of symmetric and asymmetric keys that incorporate local device attributes for device uniqueness. All primary key information is stored within Hardware Security Modules (HSM’s).
Each credential is digitally signed by the issuing organization which eliminates tampering of the credentials material. The credentials are stored in a person's mobile device in a specialized security database using a FIPS 140-2 encryption system. Each mobile device's local database encryption key is stored within the TPM of the mobile hardware.