The security subsystem enables data confidentiality, integrity and authentication by providing underlying support for secure communications protocols such as TLS/SSL and IPSec. It also supports the authentication of installable software using digital signatures.
Cryptography module:
The cryptography module includes the following significant components:
cryptography algorithms allowing data to be encrypted and decrypted and supporting symmetric ciphers: DES, 3DES, AES , RC2, RC2-128, RC4, RC5 and PKCS #7, and asymmetric ciphers:RSA, DSA and DH
hash functions: MD5, SHA1 and HMAC
pseudo-random number generator for generating cryptographic keys.
Cryptographic token framework:
The cryptographic token framework enables licensees to integrate support for removable hardware devices, such as WIM modules, in a flexible manner.
Certificate management module:
The certificate management module is used for authentication of other entities (e.g. third party developers, web servers) to the user of the phone, and for authentication of the user of the phone. It X.509 certificates according to the PKIX Certificate Profile (RFC 2459). This module provides the following services:
storage and retrieval of certificates using the cryptographic token framework
assignment of trust status to a certificate on an application-by-application basis
certificate chain construction and validation
verification of trust of a certificate
certificate revocation checking using the Online Certificate Status Protocol (OCSP)
application update notif ication for installed applications.
Software installation:
The software installation system provides a secure and fast installation process. The installation tool supports:
installation of C++ executables, including authentication of software components using digitalsignatures to provide a measure of confidence that applications being installed onto a Symbian OS phone are from a known reputable vendor.
installation of Java MIDP 2.0 MIDlets, including authentication of MIDlets using digital signatures.
installation of Java MIDP 1.0 MIDlets. The MIDP OTA recommended practice document is fully supported.
compression of install packages to reduce disk space and download times. The compression library is a generic shareable DLL which can be called by other applications.
different varieties of phones, allowing the installation package creator to ensure the correct software is installed onto an appropriate phone.
The cryptography module includes the following significant components:
cryptography algorithms allowing data to be encrypted and decrypted and supporting symmetric ciphers: DES, 3DES, AES , RC2, RC2-128, RC4, RC5 and PKCS #7, and asymmetric ciphers:RSA, DSA and DH
hash functions: MD5, SHA1 and HMAC
pseudo-random number generator for generating cryptographic keys.
Cryptographic token framework:
The cryptographic token framework enables licensees to integrate support for removable hardware devices, such as WIM modules, in a flexible manner.
Certificate management module:
The certificate management module is used for authentication of other entities (e.g. third party developers, web servers) to the user of the phone, and for authentication of the user of the phone. It X.509 certificates according to the PKIX Certificate Profile (RFC 2459). This module provides the following services:
storage and retrieval of certificates using the cryptographic token framework
assignment of trust status to a certificate on an application-by-application basis
certificate chain construction and validation
verification of trust of a certificate
certificate revocation checking using the Online Certificate Status Protocol (OCSP)
application update notif ication for installed applications.
Software installation:
The software installation system provides a secure and fast installation process. The installation tool supports:
installation of C++ executables, including authentication of software components using digitalsignatures to provide a measure of confidence that applications being installed onto a Symbian OS phone are from a known reputable vendor.
installation of Java MIDP 2.0 MIDlets, including authentication of MIDlets using digital signatures.
installation of Java MIDP 1.0 MIDlets. The MIDP OTA recommended practice document is fully supported.
compression of install packages to reduce disk space and download times. The compression library is a generic shareable DLL which can be called by other applications.
different varieties of phones, allowing the installation package creator to ensure the correct software is installed onto an appropriate phone.
No comments:
Post a Comment