From account sign up to using Tessie out in the world, Tessie has paid close attention to guarding you and your Tesla.
Tessie doesn't use or store passwords, because they are easy to guess, steal and compromise from other websites. Instead, Tessie requires that you prove that you can access your email, the most root part of your digital identity.
Tessie supports a range of biometrics on iPhone, iPad and Android as an additional authentication factor. If enabled, biometric verification will be required to open Tessie.
All network connections are SSL encrypted and all data is encrypted at rest using AES-256 and symmetric keys.
Tessie uses the dedicated Secure Enclave hardware layer on iPhone, iPad and Apple Watch, and the AES-encrypted Keystore on Android.
Access to your Tesla can be revoked at any time by unlinking your Tesla account or by changing your Tesla password.
Tessie fully supports, and strongly encourages using, Tesla account multi-factor authentication.
Tessie uses industry-standard OAuth authentication to ensure security. Here's how it works:
Tessie opens an SSL-encrypted window to tesla.com for you to sign in. These credentials are invisible to Tessie.
This token is used to communicate with your Tesla.
Revoke access by unlinking your Tesla account or by changing your Tesla password.