A secure storage apparatus on a mobile device for securing user-access to a mobile application is provided. The secure storage may include, an electronic representation of a mobile token pin selected and inputted when authenticating a user for a first time and an OTP seed, stored in the secure storage. The secure storage may be a secure portion of memory on the mobile device only accessible and visible to the mobile application upon receipt of the mobile token pin. When the mobile token pin is inputted into the mobile application on the mobile device, the mobile application may be configured to transmit the mobile token pin to an authentication server for verification. In response to the verification, the OTP seed may be released from the secure storage and activate an OTP application associated with the mobile application to generate, transparent to the user, an OTP.