Verifying The Midlet Suite Jar; Table 17 Actions Performed Of Signer Certificate Verification - Motorola MOTORAZR maxx V6 Developer's Manual

Java me developer guide

Hide thumbs Also See for MOTORAZR maxx V6:

Manual (103 pages)

Service manual (50 pages)

User manual (35 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

page of 201

/ 201
Contents
Table of Contents
Bookmarks

Table of Contents

Java ME Developer Guide

Chapter 8 - MIDP 2.0 Security Model

and validated.

Table 17 Actions performed of signer certificate verification

8.19 Verifying the MIDlet Suite JAR

The following are the steps taken to verify the MIDlet suite JAR:

1. Get the public key from the verified signer certificate.

2. Get the MIDlet-JAR-RSA-SHA1 attribute from the JAD.

3. Decode the attribute value from base64 yielding a PKCS #1 signature,

and refer to RFC 2437 for more detail.

4. Use the signer's public key, signature, and SHA-1 digest of JAR to verify

the signature. If the signature verification fails, reject the JAD and

MIDlet suite. The MIDlet suite will not be installed or allow MIDlets from

the MIDlet suite to be invoked as shown in Table 17

5. Once the certificate, signature, and JAR have been verified, the MIDlet

suite is known to be trusted and will be installed (authentication process

will be performed during installation).

Table 18 is a summary of MIDlet suite verification including dialog prompts:

Initial State

JAD not present, JAR

downloaded

JAD present, but JAR is un-

signed

JAR signed but no root cer-

tificate present in the key-

store to validate the certi-

ficate chain

JAR signed, a certificate on

the path is expired

JAR signed, a certificate re-

jected for reasons other

than expiration

JAR signed, certificate path

validated but signature

DRAFT - Subject to Change

ture verification.

Verification Result

Authentication can not be performed, will install JAR.

MIDlet suite is treated as untrusted. The following error

prompt will be shown, "Application installed, but may

have limited functionality."

Authentication can not be performed, will install JAR.

MIDlet suite is treated as untrusted. The following error

prompt will be shown, "Application installed, but may

have limited functionality."

Authentication can not be performed. JAR installation

will not be allowed. The following error prompt will be

shown, "Root certificate missing. Application not in-

stalled."

Authentication can not be completed. JAR installation

will not be allowed. The following error prompt will be

shown, "Expired Certificate. Application not installed."

JAD rejected, JAR installation will not be allowed. The

following error prompt will be shown, "Authentication

Error. Application not installed."

JAD rejected, JAR installation will not be allowed. The

following error prompt will be shown, "Authentication

[62/201]

Table of Contents

Verifying The Midlet Suite Jar; Table 17 Actions Performed Of Signer Certificate Verification - Motorola MOTORAZR maxx V6 Developer's Manual

Table 17 Actions performed of signer certificate verification

8.19 Verifying the MIDlet Suite JAR

Related Manuals for Motorola MOTORAZR maxx V6

Related Content for Motorola MOTORAZR maxx V6

Table of Contents