Siemens AC65, XT65, XT75, TC65 12 Java Security

Java User’s Guide

12 Java Security

112

s

wm_java_usersguide_v12 Page 98 of 123 2008-02-25

Confidential / Released

12 Java Security

The Java Security Model follows the specification of MIDP 2.0 and is IMP-NG conforming. It

integrates only a simple protection domain concept since protection domains are not needed

for module use cases.

Java Security is divided into two main areas:

• Secure MIDlet data links (HTTPS, Secure Connection) (see Section 12.1)

• Execution of signed/unsigned MIDlets (see Section 12.2)

The interface of Java Security offers the following functionality.

• Insert/delete X.509 certificate (default is no certificate, see Section 12.2.1)

• Switch between trusted and untrusted mode for the execution of MIDlet

(default is trusted after inserting the certificate, see Section 12.2.1)

• Enable/disable untrusted domain in trusted mode (default is disabled)

• Switch MES (default is ON see Section 12.3)

• Switch https certificate verification (default is OFF, see Section 12.1)

Restrictions:

• The module does not supply users independent date/time base. Therefore no examination

of the validity of the expiration date/time of the certificate takes place.

12.1 Secure Data Transfer

This feature makes it possible for MIDlets to use safe data links to external communications

partners. The specification IMP-NG defines two java classes with this characteristic - HTTPS-

Connection and SecureConnection

.

The Siemens implementation follows the recommendations in IMP-NG:

HTTPSConnection

• HTTP over TLS as documented in RFC 2818 and TLS Protocol Version 1.0 as specified in

RFC 2246.

SecureConnection

• TLS Protocol Version 1.0 as specified in RFC 2246

Contents

Main Trademark notice Java Users Guide s Content Page Page Page Page Tabl es Figures Page 1Preface 2Overview 2.1 Related Documents 2.2 Terms and Abbreviations Page 3Installation 3.1 System Requirements 3.2 Installation CD for AC65/AC75 and XT65/XT75 3.3 Installation CD for TC65 3.3.1 Components 3.3.1.1 Module Exchange Suite 3.3.1.2 WTK 3.3.1.3 SDK / JDK 3.3.1.4 NetBeans IDE 5.0 3.3.1.5 NetBeans IDE 5.5.1 3.3.1.6 Eclipse 3.1.2 IDE and Eclipse ME Plugin 1.5.x 3.3.1.7 Eclipse 3.2.2 IDE and Eclipse ME Plugin 1.5.5 or 1.6.8 3.3.1.8 GPS Evaluation Software 3.3.1.9 Integrated Documentation Suite (IDS) 3.4 Set up Java Development Environment with Eclipse IDE (Quick Start-up) Page 3.5 Siemens Mobility Toolkit Installation 3.5.1 Installing the Standard Development Toolkit 3.5.2 Installing the SMTK Environment Page 3.5.3 Installing NetBeans IDE 5.0 / NetBeans IDE 5.5.1 3.5.4 Installing Eclipse 3.0, Eclipse 3.1 or Eclipse 3.2 3.5.5 Installing Borland JBuilder X, 2005 and 2006 Enterprise/ Developer 3.5.6 Installing Module Exchange Suite (MES) 3.6 SMTK Uninstall 3.7 Upgrades 4 Software Platform 4.1 Software Architecture Page 4.2.7 GPS 4.2.8 JVM Interfaces 4.2.8.1 IP Networking 4.2.8.2 Media 4.2.8.3 Other Interfaces 4.3 Data Flow of a Java Application Running on the Module 4.4 Handling Interfaces and Data Service Resources 4.4.1 Module States 4.4.1.1 State 1: Default No Java Running Page 4.4.2 Module State Transitions 5 Maintenance 5.1 IP Service 5.2 Remote SIM Access 5.3 Power Saving 5.4 Charging 5.5 Airplane Mode 5.6 Alarm 5.7 Shutdown 5.7.1 Automatic Shutdown 5.7.2 Manual Shutdown 5.7.3 Restart after Switch Off 5.7.4 Watchdog 5.8 Special AT Command Set for Java Applications 5.8.1 Switching from Data Mode to Command Mode 5.8.2 Mode Indication after MIDlet Startup 5.8.3 Long Responses 5.8.4 Configuration of Serial Interface 5.8.5 Java Commands 5.8.6 AutoExec Function 5.9 System Out 5.9.1 Serial interfaces 5.9.2 File 5.9.3 UDP 5.10 GPIO 5.11 Restrictions 5.11.1 Flash File System 5.11.2 Memory 5.12 Performance 5.12.1 Java 5.12.2 Pin I/O 5.12.3 Data Rates on RS-232 API 5.12.3.1 Plain Serial Interface 5.12.3.2 Voice Call in Parallel 5.12.3.3 Scenarios with GPRS/EGDE Connection 5.12.3.4 Upload 5.12.3.5 Download Page 5.13 System Time 6 MIDlets 6.1 MIDlet Documentation 6.2 MIDlet Life Cycle Page 6.3 Hello World MIDlet Here is a sample HelloWorld program. 7 File Transfer to Module 7.1 Module Exchange Suite 7.1.1 Windows Based 7.1.2 Command Line Based 7.2 Over the Air Provisioning 7.3 Security Issues 7.3.1 Module Exchange Suite 7.3.2 OTAP 8 Over The Air Provisioning (OTAP) 8.1 Introduction to OTAP 8.2 OTAP Overview 8.3 OTAP Parameters 8.4 Short Message Format 8.5 Java File Format 8.6 Procedures 8.6.1 Install/Update 8.6.2 Delete 8.7 Time Out Values and Result Codes 8.8 Tips and Tricks for OTAP 8.9 OTAP Tracer 8.10 Security 8.11 How To Page 9 Compile and Run a Program without a Java IDE 9.1 Build Results 9.2 Compile 9.3 Run on the Module with Manual Start 9.4 Run on the Module with Autostart 9.4.1 Switch on Autostart 9.4.2 Switch off Autostart 10 Compile and Run a Program with a Java IDE 10.1 Eclipse 3.1.2 (with ME Plugin 1.2.3) 10.1.1 Setup a New Project Page Page Page Page 11 Debug Environment 11.1 Data Flow of a Java Application in the Debug Environment 11.2 Em ulato r Page 11.3 Java IDE 11.3.1 NetBeans IDE 5.0, NetBeans 5.5 or NetBeans 5.5.x 11.3.1.1 Switching Emulator to IMP-NG Emulator 11.3.1.2 Templates 11.3.1.3 Examples New Project... The New Project wizard opens. Select Category Samples Mobile 11.3.1.4 Compile and Run 11.3.1.5 Starting Debug Session without Downloading Java Files 11.3.1.6 Displaying Java "System.out" in NetBeans IDE window Page Preferences J2ME J2ME 11.3.2.4.2 Switching Emulators 11.3.2.5 Using Eclipse with ME Plugin 1.5.x 11.3.2.5.1 Additional Configuration of Integrated Emulator 11.3.2.5.2 Switching Emulators 11.3.2.6 Using Eclipse with ME Plugin 1.6.x 11.3.2.7 Import Example 11.3.2.8 Compile and Debug Page 11.3.2.9 Starting Debug Session without Downloading Java Files Page 11.3.3 Borland JBuilder X 11.3.3.1 Examples 11.3.3.2 Starting Debug Session without Downloading Java Files 11.3.4 Borland JBuilder 2005 and JBuilder 2006 Enterprise/Devel- oper 11.3.4.1 Examples 11.4 Breakpoints 11.5 Switching Java System.out to IDE Debug Window 11.6 Important Information for Java Debugging on Windows Vista 12 Java Security 12.1 Secure Data Transfer Page 12.1.1 Create a Secure Data Transfer Environment Step by Step Page Page 12.2 Execution Control 12.2.1 Change to Secured Mode Concept Page 12.3 Application and Data Protection 12.4 Structure and Description of the Java Security Commands Page Page 12.4.3 Send Java Security Command to the Module 12.5 Create a Java Security Environment Step by Step 12.5.1 Create Key Store 12.5.2 Export X.509 Root Certificate 12.5.3 Create Java Security Commands Page 12.5.4 Sign a MIDlet 12.6 Attention 13 Java Tutorial 13.1 Using the AT Command API 13.1.1 Class ATCommand 13.1.1.1 Instantiation with or without CSD Support 13.1.1.2 Sending an AT Command to the Device, the send() Method 13.1.1.3 Data Connections Page 13.1.1.4 Synchronization 13.1.2 ATCommandResponseListener Interface 13.1.2.1 Non-Blocking ATCommand.send() Method 13.1.3 ATCommandListener Interface 13.1.3.1 ATEvents 13.1.3.2 Implementation 13.1.3.3 Registering a Listener with an ATCommand Instance 13.2 Programming the MIDlet 13.2.1 Threads 13.2.2 Example Page 14 Differences to the TC45