tool
MIDP Application Security
Gathers resources related to application security in general as well as information specific to MIDP.
Sun CAT Sun Commerce Animation Tutorial (Sun CAT) is a simple application similar to Neko. Originally developed on the X Windows platform in 1990 by Mayasuki Koba, Neko has been ported to numerous platforms. Neko consists of an animated cat that chases a mouse around a window. Sun CAT will run on any MIDP 1.0 device or emulator. To load the catalog and make mock purchases, your device must be able to make HTTPS connections. Although HTTPS is not mandated by the MIDP 1.0 specification, it is used in this example to demonstrate how credit card information may be securely transmitted from a MIDlet client to a server.
API
Security and Trust Services APIs
ADPU, JCRMI, PKI, CRYPTO
1.0 JSR 177
Security
JSSE, JCE, JAAS1.0JSR 219
Security and Trust Services
Security and Trust Services for J2ME (SATSA) provides Java ME software applications with APIs for security and trust services through the integration of a security element.
- SATSA Specification, 1.0 (JSR-177)
- Installation Guide
- Release Notes
- Data Sheet
- SATSA Developer's Guide [HTML] [PDF 264KB]
MIDP Application Security 4: Encryption in MIDP
Sep. 2005
Sun's Jonathan Knudsen delivers part 4 in his series on MIDP application security. The article demonstrates cryptography in action, developing a secure messaging MIDlet suite based on WMA (JSR 120).
The Security and Trust Services API (SATSA) for J2ME: The Security APIs
Sep. 2005
SATSA (JSR 177) is a relatively new standard intended to provide a Java ME platform access to secure storage and cryptographic operations provided by a security element. SATSA Part 1 introduced concepts, communication APIs and reference implementation, this article covers the security APIs in detail, including use-cases and code examples. These two articles will become your definitive reference on all things SATSA.
MIDP Terminal Emulation, Part 4: Securing Your Mobile Communications
Sep. 2005
In the 4th and final part of "MIDP Terminal Emulation", Michael Powers extends the telnet client to operate over a secure socket connection.
The Security and Trust Services API for J2ME, Part 1
Mar. 2005
This article gives an overview of JSR 177, Security and Trust Services API (SATSA) optional packages which provides APIs for communication with security elements, as well as security APIs for the management of digital signatures, digital certificates, and cryptographic operations. The article also covers the communication APIs, and presents some information about the reference implementation.
Wireless Java Security, Security of Wireless Applications and Devices 1.0 release
Feb. 2004
This article explains wireless Java security issues and solutions.
Learning Path: MIDP Application Security
Gathers resources related to application security in general as well as information specific to MIDP.
Understanding MIDP 2.0's Security Architecture
Feb. 2003
This article describes MIDP 2.0's new security architecture. It covers protection domains, permissions, and MIDlet code signing.
MIDP Application Security 3: Authentication in MIDP
Dec. 2002
This article describes techniques MIDlet clients and servers can use to authenticate themselves.
MIDP Application Security 2: Understanding SSL and TLS
Oct. 2002
TLS and SSL are commonly used for secure and authenticated connections on the Internet. This article describes the protocols and their implementation in MIDP.
MIDP Application Security 1: Design Concerns and Cryptography
Sep. 2002
The foundation of wireless commerce is data security. This article, the first in a series of four, describes the challenges of designing secure systems using cryptography.
Secure Java MIDP Programming 1.0 release
Jun. 2002
This article describes the challenges and solutions needed to make m-commerce applications enabled for encryption, authentication, and secure communication protocols.
I actually enjoyed reading through this posting.Many thanks.
ReplyDeleteJ2ME Developer