- From: Steve Geach <Steven.Geach@elata.com>
- Date: Fri, 27 Jun 2003 13:47:32 +0100
- To: Arun Panda <ArunKP@mascotsystems.com>
- Cc: "'www-mobile@w3.org'" <www-mobile@w3.org>
Hi Arun Is this in relation to the MIDP 2.0 specifications topics on Security by any chance? There appears to be a void between envisaged Certificate usage/management and how devices actually store Certificates. I know of at least one phone where updating of a certificate would mean a firmware upgrade! Not ideal in the light of Protection Domains that may be required to be loaded onto a device in real-time. As far as validation, then I am only aware of the concept of the device doing the validating, i.e. The Certificate(s) (and Keys if required) are sent to the device in encrypted form, these are processed and then compared to the root certificate on the device. HTH Steve Arun Panda wrote: > Hi All, > > Can somebody tell how is the local certificates stored on the wireless > devices? > Is it embeded in the SIM card? or is there any other mechanism. > > Thanks and Best Regards > Arun Panda > > > -- Steven Geach Senior Software Engineer Keel House, 244 High Street North, Poole, Dorset BH15 1EA UK Tel: +44 (0)1202 207 407, Fax: +44 (0)1202 207 408 www.elata.com Asia Pacific office - elata, Level 30, 6 Battery Road, Singapore 049909 This e-mail is intended solely for the above mentioned recipient(s) and it may contain confidential information. If you have received this e-mail in error, please notify us immediately and delete the e-mail from your system. Copying, distribution or other use of the information contained in this e-mail is strictly prohibited. Nothing in this e-mail amounts to a contractual commitment, or is otherwise legally binding on elata unless confirmed by an authorised representative independently of this e-mail. Registered in England, number 1961405 ----------------------------------------------------------------------
Received on Friday, 27 June 2003 08:48:12 UTC