Method for validating an application for use in a mobile communication device
First Claim
1. A method for validating an application for use in a mobile communication device, comprising:
- receiving a request for the application from the mobile communication device at a system entry proxy server;
forwarding the request to a developer station, performed by the system entry proxy server;
receiving the application from the developer station at the system entry proxy server;
authenticating the application at the system entry-proxy server;
re-certifying the application with a compact certificate suitable for use in the mobile communication device, thereby producing a re-certified application; and
forwarding the re-certified application to the mobile communication device.
4 Assignments
0 Petitions
Accused Products
Abstract
A wireless domain (602) sets a security policy for all mobile communication devices (606) within the domain by use of a system entry proxy server (604). A developer makes an application or code segment available at a developer station (600). The application is certified by a certificate defining a developer security setting. The user of the mobile communication device initiates a download of the application so that it can be installed onto the mobile communication device. The application is downloaded through the system entry proxy server which authenticates the application, then re-certifies it with a compact certificate including an operator defined security policy. In this way the operator can control which resources of the mobile communication device are accessed by all applications coming into the wireless domain.
137 Citations
3 Claims
-
1. A method for validating an application for use in a mobile communication device, comprising:
-
receiving a request for the application from the mobile communication device at a system entry proxy server;
forwarding the request to a developer station, performed by the system entry proxy server;
receiving the application from the developer station at the system entry proxy server;
authenticating the application at the system entry-proxy server;
re-certifying the application with a compact certificate suitable for use in the mobile communication device, thereby producing a re-certified application; and
forwarding the re-certified application to the mobile communication device.
-
-
2. A method for controlling a security setting of an application for execution in a mobile communication device, comprising:
-
providing a corporate root certificate in the mobile communication device;
providing a corporate domain including a developer station and a corporate proxy server;
transmitting a request for the application from the mobile communication device to the developer station, through the corporate proxy server;
transmitting the application to the corporate proxy server;
authenticating the application at the corporate proxy server;
re-certifying the application with a signed attribute certificate at the corporate proxy server, thereby providing a re-certified application, the signed attribute certificate specifying a desired level of security for the application; and
transmitting the re-certified application the mobile communication device.
-
-
3. A method of re-certifying an application for use in a mobile communication device, comprising:
-
providing, at a developer station, the application including an associated authentication means;
providing a system entry proxy server which controls the entry of applications into a wireless domain in which the mobile communication device is operating;
providing a root certificate for the system entry proxy server in the mobile communication device;
transmitting a request for the application to the developer station from the mobile communication device;
transmitting the application from the developer station to the system entry proxy server;
authenticating the application with the associated authentication means;
validating the application at the system entry proxy server with a validation tool;
determining a security level for the application;
generating a compact certificate, including a security policy indicating the security level for the application; and
transmitting the application and compact certificate to the mobile communication device.
-
Specification