Apparatus and method for trusted execution environment based secure payment transactions

What is claimed is: 1. A method of providing a secure payment transaction on a mobile device comprising: determining, using a computer processor of the mobile device, whether a requested operation is a security sensitive operation; and when the requested operation is determined to be a security sensitive operation, determining, using the computer processor of the mobile device, whether a device warranty bit in a fuse has been set, and when the device warranty bit has not been set, executing the requested operation in a secure environment of the mobile device, wherein executing the requested operation in the secure environment of the mobile device comprises: determining whether one or more conditions are met, and when the one or more conditions are not met disabling financial transactions for a specified period. 2. The method of claim 1 , wherein the secure environment comprises a trusted execution environment. 3. The method of claim 1 , wherein, when the requested operation is determined not to be a security sensitive operation, the requested operation is executed in a portion of the mobile device outside of the secure environment. 4. The method of claim 1 , wherein the determining that the requested operation is the security sensitive operation is based at least in part on a request of the requested operation to access sensitive data. 5. The method of claim 4 , wherein the sensitive data comprises at least one of a key, a token, or a payment credential. 6. The method of claim 1 , wherein the requested operation comprises a requested operation associated with a secure payment transaction. 7. The method of claim 1 , wherein executing the requested operation in a secure environment of the mobile device comprises: executing the requested operation in the secure environment of the mobile device when the one or more conditions are met. 8. The method of claim 7 , wherein the one or more conditions comprise an authentication of a user, performed in the secure environment, associated with a secure payment transaction. 9. The method of claim 8 , wherein the authentication of the user is based at least in part on input received through a trusted user interface securely connected with the secure environment. 10. The method of claim 8 , wherein the authentication of the user comprises authenticating the user for at least one of a specific payment network, a specific account, a specific key, a specific token, or a specific payment credential. 11. The method of claim 7 , wherein the one or more conditions comprise verification of a boot image. 12. The method of claim 11 , wherein the verification of the boot image comprises verifying a hash value associated with the boot image against a securely stored previous hash value. 13. The method of claim 11 , further comprising: determining that verification of the boot image failed, and setting the device warranty bit based on the failure determination. 14. An apparatus for securing sensitive data on a mobile device, the apparatus comprising: a memory in a secure environment on the mobile device, the memory storing executable instructions for securing sensitive data; a touch sensitive display for displaying a trusted user interface (TUI) on the mobile device; and a processor in the secure environment on the mobile device, wherein the processor is configured to execute the stored instructions to: determine whether a requested operation is a security sensitive operation; and when the requested operation is determined to be a security sensitive operation, determine whether a device warranty bit in a fuse has been set, and when the device warranty bit has not been set, execute the requested operation in a secure environment of the mobile device, wherein executing the requested operation in the secure environment of the mobile device comprises: determining whether one or more conditions are met, and when the one or more conditions are not met disabling financial transactions for a specified period. 15. The apparatus of claim 14 , wherein the secure environment comprises a trusted execution environment. 16. The apparatus of claim 14 , wherein, when the requested operation is determined not to be a security sensitive operation, the requested operation is executed in a portion of the mobile device outside of the secure environment. 17. The apparatus of claim 14 , wherein the determining that a requested operation is a security sensitive operation is based at least in part on a request of the requested operation to access sensitive data. 18. The apparatus of claim 17 , wherein the sensitive data comprises at least one of a key, a token, or a payment credential. 19. The apparatus of claim 14 , wherein executing the requested operation in a secure environment of the mobile device comprises: executing the requested operation in the secure environment of the mobile device when the one or more conditions are met. 20. The apparatus of claim 19 , wherein the one or more conditions comprise an authentication of a user associated with a secure payment transaction. 21. The apparatus of claim 20 , wherein the authentication of the user is based at least in part on input received through a trusted user interface securely connected with the secure environment. 22. The apparatus of claim 19 , wherein the one or more conditions comprise verification of a boot image. 23. A non-transitory computer processor readable storage medium including instructions, executable by a processor, stored thereon to perform a method comprising: determining whether a requested operation is a security sensitive operation; and when the requested operation is determined to be a security sensitive operation, determining whether a device warranty bit in a fuse has been set, and when the device warranty bit has not been set, executing the requested operation in a secure environment of a mobile device, wherein executing the requested operation in the secure environment of the mobile device comprises: determining whether one or more conditions are met, and when the one or more conditions are not met disabling financial transactions for a specified period.