-Single confirmation: The first time in the whole MIDlet life a MIDlet uses a protected feature, user is prompted to grant access. It remains valid until the MIDlet is removed from the handset.

-Always: The security group unconditionally grants access to protected features.

A MIDlet has a security status which is either "uncertified", or else "certified".

An "uncertified" status means that the source of the MIDlet could not be verified by the mobile phone at installation time. As far as the phone knows, the MIDlet could have been written by anyone.

A "certified" status means that the MIDlet was digitally signed by a known party, whose name is displayed by the mobile phone.

Security permissions are different for "uncertified" or "certified" MIDlets.

Security configuration menu

When a MIDlet is installed in the mobile phone, default security authorizations are applied.

This default security configuration may be altered through the "Settings/Security" menu of an installed MIDlet. Once in the "Security" menu, the security status of the MIDlet is displayed.

If you do not want to enter the security menu, simply select "Back" button. You can proceed by selecting "Ok" button.

The menu displayed allows you to increase or decrease permissions currently applied to the current MIDlet for each of the security groups.

When you set a more permissive authorization to a security group than the current value, mobile phone asks you to confirm your increased risk exposure.

The maximum risk exposure increase is limited by the security status.

What is Java™?

Business applications and games are easily downloadable by the end-user on a Java™ featured handset.

Your mobile phone is a MIDP 2.0 compliant Java™ platform which implements WMA (SMS support) and MMAPI (Multimedia support) options, providing an exciting environment to run highly graphical, networked and intuitive MIDP applications.

What is a MIDlet?

A Java™ application or a game designed to run in a mobile phone is named a MIDlet (MIDP applet). A MIDlet is usually made of 2 files:

-The JAD file

-The JAR file

JAD file stands for Java™ Application Descriptor. It is a small file describing the content of a JAR file.

JAR file stands for Java™ Archive. It refers to the application data themselves (program, images, sound). A JAR file may be up to 200 kilo-bytes large.

Note: In rare circumstances, MIDlet vendors may provide no JAD file and the MIDlet is the JAR file alone. In such a case it is your only responsibility to evaluate the risk to download the JAR file without possibility of consulting the JAD file.

56

Java™

Page 56
Image 56
Sagem my500x, my501x manual Security configuration menu, What is Java?, What is a MIDlet?