UAE Central Bank Strengthens Mobile Banking Security Requirements
Regulatory Update · 2025-11-15 · MobAIsec Governance Intelligence
Summary
The UAE Central Bank (CBUAE) continues to raise the bar for mobile banking security across licensed financial institutions. Recent supervisory guidance emphasizes runtime application protection, device trust verification, and comprehensive fraud control frameworks for mobile channels.
Key areas of focus include mandatory root and jailbreak detection with risk-based responses, certificate pinning for all API communications, anti-overlay protection on payment screens, and secure local storage using hardware-backed key protection.
Financial institutions operating in the UAE and broader GCC region should conduct immediate governance assessments of their mobile banking applications against the updated requirements. MobAIsec provides automated APK assessment mapped directly to CBUAE control frameworks.
Frequently Asked Questions
When do the updated CBUAE requirements take effect?
Institutions should align with updated supervisory expectations during their next regulatory examination cycle.
Assess Your Banking APK
Upload your Android APK for a governance assessment mapped to this framework.