Trusted 3rd Party Domain, Top Line of Prompt | Motorola C381P

31

MIDP 2.0 Security Model

•No – will not allow the MIDlet suite access to the requested API or function that is protected. (No Access)

The prompt No, Ask Later will be displayed during runtime dialogs and will enable the user to not allow the protected function to be accessed this instance, but to ask the user again the next time the protected function is called.

User permission interaction modes will be determined by the security policy and device implementation. User permission will have a default interaction mode and a set of other available interaction modes. The user should be presented with a choice of available interaction modes, including the ability to deny access to the protected API or function. The user will make their decision based on the user-friendly description of the requested permissions provided for them.

The Permissions menu allows the user to configure permission settings for each MIDlet when the VM is not running. This menu is synchronized with available run-time options.

Implementation based on Recommended Security Policy

The required trust model, the supported domain, and their corresponding structure will be contained in the default security policy for Motorola’s implementation for MIDP 2.0. Permissions will be defined for MIDlets relating to their domain. User permission types, as well as user prompts and notifications, will also be defined.

Trusted 3rd Party Domain

A trusted third party protection domain root certificate is used to verify third party MIDlet suites. These root certificates will be mapped to a location on the handset that cannot be modified by the user.

The Table 27 shows the specific wording to be used in the first line of the above prompt:

Protected Functionality

Data network

Data network (server mode)

Comm

Push

SMS

SMS send

SMS receive

Access phonebook

Top Line of Prompt

“Send Data?”

“Receive Data?”

“Connect?”

“Auto Start-Up?”

“Use SMS?”

“Send SMS?”

“Receive SMS?”

“Use Phonebook?”

116

Image 116

Motorola C381P Implementation based on Recommended Security Policy, Trusted 3rd Party Domain, Top Line of Prompt

Contents

Motorola C381p Handset J2ME Developer Guide Table of Contents Network Apis GET URL from Flex API Java System Menu Table of Figures Java Platform Index of Tables MIDlet Attributes, descriptions, and JAD and/or JAR Actions performed upon completion of signer certificate Table of Code Samples Introduction PurposeAudience Disclaimer References Reference Revision History Definitions, Abbreviations, AcronymsDate Name Reason November 09 S.A.R Initial Draft Description Document Overview Background Applications this chapter describes J2ME Introduction Java 2 Platform, Micro Edition J2ME Motorola J2ME Platform Midp Resources and API’s Available Introduction to Development Developing and Packaging J2ME ApplicationsGuide to Development in J2ME Developing and Packaging J2ME Applications Downloading Applications Method of Downloading Error Logs Error Logs Contents OTA and Download JAD file information Downloading a JAR file without a JAD MIDlet UpgradeApplication Management Installation and Deletion Status Reports System Menu Action JAD Attributes JAD / Manifest Attribute Implementations JAD Java.lang Implementation Java.lang support Network APIs Network Connections Socket Connection User Permission Https Connection Network APIs Code Sample 3 Https Connection JSR 135 Mobile Media API JSR 135 Mobile Media API ToneControl VolumeControl GUIControl StopTimeControl Manager ClassAudio Media Description Mime Type Tone Sequences JSR 135 Mobile Media API SMS Client Mode and Server Mode Connection JSR 120 Wireless MessagingWireless Messaging API WMA MessageConnectionConnector.opensms//6000 SMS Port Numbers SMS Notification SMS Message TypesSMS Message Structure Messaging features/classes supported Setting of payload text for text message Setting of address with port numberCreation of server connection Creation of client connection with port number Setting of address without port number Sending of messageReceiving of message Getting of address JSR 120 Wireless Messaging API Code Sample 5 JSR 120 Wireless Messaging API Phonebook Access API Phonebook Access API Permissions Sample of code for calling of ‘addint sortOrder’ method Int num = PhoneBookRecord.getNumberRecordsByNamename Sample of code for calling of ‘getMaxEmailLength ’ method Code Sample 6 Phonebook API Dialer Class Class DialerEvent Summary Detail Definition Class Dialer Method Summary SetDialerListener Parameters Throws StartCallSendExtNo EndCall Interface DialerListenerSample DialerListener Implementation Asynchronous callback for receive phone call event Class Hierarchy Interface HierarchyNotifyDialerEvent Public void notifyDialerEventDialer dialer, byte event Serial Port Access Sending a Message SMS Messaging as GSM ExtensionCreating a Message Viewing a Message Deleting a Message User Display Interface Canvas Functionality User Display Interface Hardware Mapping End KeySend Key Left, Right and Menu Soft Keys Global Command Soft Key Position Priority Power Key Active Global Commands Back, Cancel, OK, Help & Stop Volume Key Game Key Mapping Application Icons Application ResourcesApplication Keys Deleting the MIDlet/Application Effect of Master Clear or Master ResetSoftkey Labels Download MIDlet Through Browser Star Active Browser Session from Main Menu Find a location with J2ME Application Downloading and Installing J2ME Application MIDlets Downloading MIDlets Download MIDlet Through Browser Different Error Checks Memory Full Download MIDlet Through Browser Memory full error Memory Full during installation process Memory Full help message during installation process Application version already exists Newer Application Version Exists Same Version of Application already exists on the handset Latest Newer Version of Application exists Lightweight Windowing Toolkit UDP Support Tell-A-Friend Option Shared JAD URLsOverview Accessing Tell-A-Friend from SMM Downloading through Browser Downloading from PC Via serial/USB Downloading through MMS Get URL from Flex API Flexible URL for downloading functionality Security Policy Multiple Key Press Implementation Key ITAP Intelligent Keypad Text Entry API Lcdui Refer to for Lcdui feature/class support for Midp Supported Text in forms is wrapped and scrolled Lcdui Lcdui feature/class Auto Launch of Midlets Scenarios involved in launching midlet Background Applications Background AttributeBackground Java Application Lifecycle Background MIDlet Java service menu for a MIDlet with background attributes Flip Behaviors Java System Menu MIDlet Manager Menu View MIDlet Suite Information 105 106 J2ME Invisible NET Options Invisible Net for J2MEIntroduction 108 J2ME Context-Sensitive Menu Options Backward Compatibility/Flexing Download Midlet through PC Establishing Connection Operator Apps Provisioning Midp 2.0 Security Model Untrusted MIDlet Suites Untrusted Domain Permission Types concerning the Handset User Permission Interaction ModeTrusted MIDlet Suites Top Line of Prompt Implementation based on Recommended Security PolicyTrusted 3rd Party Domain Dialog Prompts Trusted MIDlet Suites Using x.509 PKISigning a MIDlet Suite Creating the Signing Certificate Signer of MIDlet SuitesMIDlet Attributes Used in Signing MIDlet Suites Authenticating a MIDlet Suite Inserting Certificates into JADCreating the RSA SHA-1 signature of the JAR Verifying the Signer Certificate Verifying the MIDlet Suite JAR Initial State Verification Result Appendix a Audio Mix Table Appendix B Key Mapping Key Mapping for the C381p 124 Appendix C Memory Management Calculation Available Memory Online FAQ Appendix D Appendix E Http Range Graphic Description Appendix F Spec Sheet C381p Spec Sheet Motorola C381p 130