How do you secure data transmission between a mobile application and a local hardware accessory to prevent man-in-the-middle attacks?