Sony Ericsson UIQ 3 WriteDeviceData, SWEvent, ProtServ, PowerMgmt, SurroundingsDD, TrustedUI

Page 17

Developers guidelines Signing applications

WriteDeviceData

Grants write access to sensitive system data.

SWEvent

Grants read access to confidential system data. System data that is not confidential does not need to be protected by this capability.

API examples: Test utilities, FEP

ProtServ

Grants the right to a server to register with a pro- Mainly granted to system servers. tected name. Protected names begins with a “!”.

The kernel will prevent servers without this capa- bility from using such a name, and will therefore prevent impersonation of protected servers.

PowerMgmt

Grants the right to kill any process in the system, to power off unused periferals, to put the device into standby state and wake it up again, or power it down completely. Note however, that this does not control anything that might drain battery power.

API examples:

WSERV

SurroundingsDD

Grants access to logical device drivers providing input information about the device surroundings.

TrustedUI

Grants the right to create a trusted UI session, and thereby display dialogs in a secure UI envi- ronment.

Mainly granted to SWInstall and token servers.

Phone manufacturer capabilities

DRM

Grants access to protected content subject to DRM rights restrictions.

NetworkControl

Grants the right to modify or access network pro- tocol controls.

MultimediaDD

Controls access to all multimedia device drivers, audio, camera, and so on.

API examples: MMF, ICL, ECam

TCB

17	October 2006

Image 17

Contents Signing applications Purpose of this document PrefaceDocument conventions Sony Ericsson Developer WorldProducts AbbreviationsDocument history Trademarks and acknowledgementsTypographical conventions Change historyContents Developers guidelines Signing applications Symbian OS v9 security architecture Restricted and unrestricted APIs IntroductionCapabilities Unique Identifiers, UIDs IdentifiersSecure Identifier, SID Vendor Identifier, VIDUnsigned sandboxed applications Data cagingCapability User granted permission Symbian Signed applicationsCapability mapping Basic Capabilties Signing freeware applications Developer certificatesACS publisher ID Publisher certifiers Symbian OS v9 application signing Required capabilities Planning for developmentSigning or not NetworkServices LocalServicesUserEnvironment LocationWriteDeviceData PowerMgmtSWEvent ProtServDiskAdmin General signing procedureCreating a Symbian Signed application AllFilesUID allocation Symbian Signed portal account registrationTo retrieve a UID from the Symbian Signed Portal UID UID range Purpose ClassACS publisher ID Identity requirements Number of IMEIsExtended Capabilities Developers guidelines Signing applications UID Information To do before submitting the applicationPKG file format Policy statement dialogDevelopers guidelines Signing applications Appendix Capability CommDD Functions listed by capabilityCapability AllFiles Capability DiskAdmin Capability Drm Developers guidelines Signing applications Developers guidelines Signing applications Developers guidelines Signing applications Developers guidelines Signing applications Capability LocalServices Developers guidelines Signing applications Capability Location Capability MultimediaDD Capability NetworkControl Developers guidelines Signing applications Developers guidelines Signing applications Capability NetworkServices Developers guidelines Signing applications Developers guidelines Signing applications Developers guidelines Signing applications Developers guidelines Signing applications Developers guidelines Signing applications Developers guidelines Signing applications Capability ReadDeviceData Capability PowerMgmtCapability ProtServ Developers guidelines Signing applications Developers guidelines Signing applications Developers guidelines Signing applications Capability ReadUserData Developers guidelines Signing applications Developers guidelines Signing applications Developers guidelines Signing applications Developers guidelines Signing applications Developers guidelines Signing applications Developers guidelines Signing applications Developers guidelines Signing applications Developers guidelines Signing applications Developers guidelines Signing applications Developers guidelines Signing applications Capability SurroundingsDD Capability SwEvent Capability WriteDeviceData Capability TcbCapability TrustedUI Capability UserEnvironment Developers guidelines Signing applications Developers guidelines Signing applications Developers guidelines Signing applications Developers guidelines Signing applications Developers guidelines Signing applications Developers guidelines Signing applications Developers guidelines Signing applications Capability WriteUserData Developers guidelines Signing applications Developers guidelines Signing applications Developers guidelines Signing applications Developers guidelines Signing applications Developers guidelines Signing applications Developers guidelines Signing applications Developers guidelines Signing applications Capability Illegal Developers guidelines Signing applications