Muutke küpsiste eelistusi

Symbian OS Platform Security: Software Development Using the Symbian OS Security Architecture [Pehme köide]

2.50/5 (8 hinnangut Goodreads-ist)
(Symbian)
  • Formaat: Paperback / softback, 274 pages, kõrgus x laius x paksus: 231x185x15 mm, kaal: 499 g
  • Sari: Symbian Press
  • Ilmumisaeg: 24-Feb-2006
  • Kirjastus: John Wiley & Sons Inc
  • ISBN-10: 0470018828
  • ISBN-13: 9780470018828
Teised raamatud teemal:
  • Pehme köide
  • Hind: 61,30 €*
  • * saadame teile pakkumise kasutatud raamatule, mille hind võib erineda kodulehel olevast hinnast
  • See raamat on trükist otsas, kuid me saadame teile pakkumise kasutatud raamatule.
  • Kogus:
  • Lisa ostukorvi
  • Tasuta tarne
  • Lisa soovinimekirja
Symbian OS Platform Security: Software Development Using the Symbian OS Security ArchitectureSuurem pilt
  • Formaat: Paperback / softback, 274 pages, kõrgus x laius x paksus: 231x185x15 mm, kaal: 499 g
  • Sari: Symbian Press
  • Ilmumisaeg: 24-Feb-2006
  • Kirjastus: John Wiley & Sons Inc
  • ISBN-10: 0470018828
  • ISBN-13: 9780470018828
Teised raamatud teemal:
Püsilink: https://www.kriso.ee/db/9780470018828.html
Märksõnad:
Symbian OS is an advanced, customizable operating system, which is licensed by the world's leading mobile phone manufacturers. The latest versions incorporate an enhanced security architecture designed to protect the interests of consumers, network operators and software developers.

The new security architecture of Symbian OS v9 is relevant to all security practitioners and will influence the decisions made by every developer that uses Symbian OS in the creation of devices or add-on applications. Symbian OS Platform Security covers the essential concepts and presents the security features with accompanying code examples.

This introductory book highlights and explains:
* the benefits of platform security on mobile devices
* key concepts that underlie the architecture, such as the core principles of 'trust', 'capability' and data 'caging'
* how to develop on a secure platform using real-world examples
* an effective approach to writing secure applications, servers and plug-ins, using real-world examples
* how to receive the full benefit of sharing data safely between applications
* the importance of application certification and signing from the industry 'gatekeepers' of platform security
* a market-oriented discussion of possible future developments in the field of mobile device security
About This Book xi
Foreword xiii
About the Authors xv
Author's Acknowledgements xxi
Symbian Press Acknowledgements xxiii
Part 1 Introduction to Symbian OS Platform Security
1(42)
Why a Secure Platform?
3(14)
User Expectations of Mobile Phone Security
3(1)
What the Security Architecture Should Provide
4(2)
Challenges and Threats to Mobile Phone Security
6(6)
How Symbian OS Platform Security Fits into the Value Chain
12(4)
How Application Developers Benefit from the Security Architecture
16(1)
Platform Security Concepts
17(26)
Background Security Principles
17(3)
Architectural Goals
20(2)
Concept 1: The Process is the Unit of Trust
22(5)
Concept 2: Capabilities Determine Privilege
27(10)
Concept 3: Data Caging for File Access
37(3)
Summary
40(3)
Part 2 Application Development for Platform Security
43(112)
The Platform Security Environment
45(16)
Building Your Application
45(3)
Developing on the Emulator
48(5)
Packaging Your Application
53(3)
Testing on Mobile Phone Hardware
56(3)
Summary
59(2)
How to Write Secure Applications
61(22)
What Is a Secure Application?
61(1)
Analyzing the Threats
61(4)
What Countermeasures Can Be Taken?
65(10)
Implementation Considerations
75(6)
Summary
81(2)
How to Write Secure Servers
83(28)
What Is a Secure Server?
83(5)
Server Threat Modeling
88(3)
Designing Server Security Measures
91(9)
Server Implementation Considerations
100(8)
Summary
108(3)
How to Write Secure Plug-ins
111(18)
What Is a Secure Plug-In?
111(3)
Writing Secure Plug-ins
114(4)
Plug-in Implementation Considerations
118(9)
Summary
127(2)
Sharing Data Safely
129(26)
Introduction to Sharing Data
129(1)
Categories of Data
130(4)
Deciding the Level of Trust
134(1)
Attacks on Data and Countermeasures
135(6)
Using System Services
141(12)
Summary
153(2)
Part 3 Managing Platform Security Attributes
155(50)
Native Software Installer
157(30)
Introduction to the Native Software Installer
157(2)
Validating Capabilities
159(11)
Identifiers, Upgrades, Removals and Special Files
170(7)
SIS File Changes for Platform Security
177(4)
Installing to and from Removable Media
181(3)
Summary
184(3)
Enabling Platform Security
187(18)
Responsibilities in Granting Capabilities
187(2)
Overview of the Signing Process
189(3)
Step-by-step Guide to Signing
192(10)
Revocation
202(2)
Summary
204(1)
Part 4 The Future of Mobile Device Security
205(14)
The Servant in Your Pocket
207(12)
Crystal-Ball Gazing
207(1)
Convergence, Content and Connectivity
207(2)
Enabling New Services
209(2)
New Security Technologies
211(6)
Summary
217(2)
Appendix A Capability Descriptions 219(6)
Appendix B Some Cryptography Basics 225(4)
Appendix C The Software Install API 229(4)
Glossary 233(4)
References 237(2)
Index 239


Craig Heath has been working in IT security since 1988, including positions at The Santa Cruz Operation as security architect for SCO UNIX, and at Lutris Technologies as security architect for the Enhydra Enterprise Java Application Server.  He joined Symbian in 2002, working in product management and strategy. He has been a member of The Open Group Security Forum (originally the X/Open Security Working Group) since 1993, sitting on the Steering Committee since 1999. He has contributed to several published security standards, including XBSS (baseline system security requirements), XDAS (distributed audit), and XSSO (single sign-on). He has also participated in standards work within POSIX, IETF, the Java Community Process, and the Open Mobile Alliance.