A common attack vector for malware is to detect when a user has logged in to their banking or fintech application, and then very quickly sending a sequence of emulated finger taps which triggers a transfer of funds. To protect against this the Okay solution uses innovative methods for detecting when the device is being controlled remotely.
When a user enters a PIN or use the fingerprint reader the device is held in the hand of the user. This makes it possible to compare the movement of the device with how it normally would be moved.
As there are real situations where the device might not move this is not a perfect indicator of something bad happening, but it can be an important input to your risk assessment algorithm.