×

Discussion Board

Results 1 to 2 of 2
  1. #1
    Registered User
    Join Date
    Jan 2008
    Posts
    4

    Only allowing one specific MIDlet to use a Java Card Applet in the Secure Element

    I wrote a question to Nokia: Janne Jalkanen regarding this, and I think it might be useful for other developers to know =)

    Question:
    I’m wondering is if there is any way of assure that a Java Card Applet in the secure element only can be used by a single specific MIDlet, some sort of way to control that no other MIDlet can access or use the Java Card Applet stored in the Secure Element.

    Answer, From Janne Jalkanen:
    Nope.

    The SE itself is paranoid and treats all accesses equally. So it cannot be limited to a single application.

    The only way you could do this is to implement a secure authentication protocol between your own applet and your own midlet - but be aware that if you include the keys in the midlet, they might be compromised e.g. with a debugger.

    So the most secure way is to use your midlet as a conduit between the applet and a remote web server, which can securely store the keys and communicate using encrypted connections to the applet.

  2. #2
    Registered User
    Join Date
    Apr 2004
    Location
    Vienna
    Posts
    321

    Re: Only allowing one specific MIDlet to use a Java Card Applet in the Secure Element

    This and other Q&A can already be found in the WIKI

    <http://wiki.forum.nokia.com/index.php/Nokia_6131_NFC_-_FAQs> (see: "If I sign a simple midlet, can it talk to for instance a Paypass application?")

    Cheers, geri-m

Similar Threads

  1. Help me secure my midlet
    By joelelangovan in forum Mobile Java Networking & Messaging & Security
    Replies: 1
    Last Post: 2007-11-24, 09:11
  2. Reading and writing to the Secure Element (Nokia 6131)
    By wobbly101 in forum Near Field Communication
    Replies: 0
    Last Post: 2007-11-09, 13:43
  3. Permanently locking the secure element
    By lovercjs in forum Near Field Communication
    Replies: 4
    Last Post: 2007-10-09, 17:15
  4. Opening connection to the secure element fails when restarting the midlet.
    By tfroidcoeur in forum Near Field Communication
    Replies: 6
    Last Post: 2007-08-24, 08:38
  5. Java AppServer 'wakes up' a MIDlet using WMA, Push
    By idrop in forum Mobile Java Networking & Messaging & Security
    Replies: 9
    Last Post: 2004-10-22, 17:57

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  
×