×

Discussion Board

Results 1 to 7 of 7
  1. #1
    Registered User
    Join Date
    Mar 2003
    Location
    Luttenberg (Netherlands)
    Posts
    577

    Central Repository & Vendor ID

    Hi,

    1. is it possible to define a security policy for a central repository file such that the system will check if the application which accesses the central repository file has a specific Vendor ID?
    2. if not, is it possible to define a security policy for a central repository file with multiple SIDs such that the system will check if the application which accesses the central repository file is one of these specific SIDs?

    What I need is that a group of co-operating applications need to be able to access my central repository file and other applications should not be able the access my central repository file.

    BR,

    Rene
    Rene Heuven
    Inmote - Creative Smartphone Solutions
    Web: www.inmote.com
    E-mail: rene@inmote.com

  2. #2
    Nokia Developer Moderator
    Join Date
    Sep 2004
    Location
    Tampere, Finland
    Posts
    11,359

    Re: Central Repository & Vendor ID

    Considering that the creation of a Central Repository itself is subject to a partnering agreement with Symbian the answer to both questions would be ... ask Symbian (or consult the documents received).

    As far as I remember the policies can only be defined based on Secure ID, not Vendor ID. But if the documentation says otherwise trust the docs
    -- Lucian

    If you are not yet a DVLUP member it is time to correct that mistake :) Click here to join: http://www.dvlup.com/lucian/Invite

  3. #3
    Super Contributor
    Join Date
    Nov 2004
    Location
    Wiltshire, UK
    Posts
    3,644

    Re: Central Repository & Vendor ID

    Hi Rene,

    Have a look at the "Central Repository How To" document (You might need to request this from Symbian as I am not 100% sure its in the BAK.

    Section 3.3.4 covers how to restrict access to the repository.
    Download Symbian OS now! [url]http://developer.symbian.org[/url]

  4. #4
    Registered User
    Join Date
    Mar 2003
    Location
    Luttenberg (Netherlands)
    Posts
    577

    Re: Central Repository & Vendor ID

    I checked the documentation for the BAKs and in a lot of other places. They do not explicitly say protection using Vendor ID is not possible, but they also show no indication it is possible. Some small experiment did not result into a working solution using Vendor ID.

    So I guess the answer is: no, protection can be not be done based on Vendor ID.

    Basically so far I only discovered examples and documentation stating you can do protection based on a single SID.

    Anyhow, thanks for the comments. BTW: You can create central repository files using public APIs with any S60 3rd SDK, so I do not think you need an additional agreement with Symbian for that.
    Rene Heuven
    Inmote - Creative Smartphone Solutions
    Web: www.inmote.com
    E-mail: rene@inmote.com

  5. #5
    Nokia Developer Moderator
    Join Date
    Feb 2006
    Location
    Oslo, Norway
    Posts
    28,694

    Re: Central Repository & Vendor ID

    In fact even the public SDK Help contains a summary, just search for something related, like cap_rd or sid_rd, and select "Symbian OS Changes for Platform Security" if you have multiple hits:
    Quote Originally Posted by SDK Help
    Access policies:
    ...
    are defined through security capabilities only (up to 7) or as a combination of SID and up to 3 capabilities.
    ...
    Indeed a bit strange decision, especially if it is compared to the C++ API level counterpart, TSecurityPolicy
    Quote Originally Posted by SDK Help
    This class can specify a security policy consisting of either:

    A check for between 0 and 7 capabilities

    A check for a given Secure ID along with 0-3 capabilities

    A check for a given Vendor ID along with 0-3 capabilities
    It would not have hurt that much introducing "vid_rd/wr" policy for CenRep, but apparently that has not happened.

    If you are really dedicated you can provide a single getter/setter server, obviously having a single SID (thus eligible for sid_wr policy), and in this case the server could do the VendorId checks.

  6. #6
    Registered User
    Join Date
    Mar 2003
    Location
    Luttenberg (Netherlands)
    Posts
    577

    Re: Central Repository & Vendor ID

    Hi wizard_hu_,

    thanks. Actually this was also our conclusion/escape - write a dedicated server which distributes the settings to the different co-operating applications/processes. I was hoping for a solution which costs a little less development time.

    Actually quite strange, because it must have occurred to Symbian at the time they designed the central repository that a valid use case scenario would be a set of co-operating application which all need access to the same repository.

    Shall I propose such an extension? I will need to propose it to Symbian, right?

    BR,

    Rene
    Rene Heuven
    Inmote - Creative Smartphone Solutions
    Web: www.inmote.com
    E-mail: rene@inmote.com

  7. #7
    Nokia Developer Moderator
    Join Date
    Sep 2004
    Location
    Tampere, Finland
    Posts
    11,359

    Re: Central Repository & Vendor ID

    Quote Originally Posted by heuven View Post
    BTW: You can create central repository files using public APIs with any S60 3rd SDK, so I do not think you need an additional agreement with Symbian for that.
    You can do many things using the public SDK and putting together some bits of info collected from the docs, SDK files and ... Symbian Signed certification criteria. Not all that you can figure out how to do is however also supported/public.

    Some things to note:
    - the Set methods in the Central Repository API are @publishedPartner
    - the installation process requires the update of a Symbian SIS package which can only be done with Symbian's permission
    - the lack of VID based policy is a good indication that the component is not yet mature which could be a decent excuse for it not being fully public.
    -- Lucian

    If you are not yet a DVLUP member it is time to correct that mistake :) Click here to join: http://www.dvlup.com/lucian/Invite

Similar Threads

  1. Replies: 1
    Last Post: 2008-08-24, 15:22
  2. SHA-2 & Central Repository
    By heuven in forum Symbian Signed Support, Application Packaging and Distribution and Security
    Replies: 5
    Last Post: 2008-08-03, 14:55
  3. Central repository installation problem
    By zdenko in forum Symbian
    Replies: 2
    Last Post: 2007-09-21, 08:19
  4. central repository
    By rpodraza in forum Symbian
    Replies: 1
    Last Post: 2007-03-08, 15:37
  5. Replies: 6
    Last Post: 2006-10-31, 05:20

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  
×