ISO14443Connection Security Exception

**Alex_Polt** · 2007-03-29, 10:49

I'm trying to make connection with internal secure element:

String uri = System.getProperty("internal.se.url");
ISO14443Connection iseConn = (ISO14443Connection) Connector.open(uri);

But then I run MIDlet i got Security Exception, should I set certain permissions to be allowed to use ISO14443Connection.

Also in Ticketing MIDlet example in 6131 SDK the url is "internal.sc.url", but if I try it I'got null.

So what is the problem?

**Raluca_** · 2007-03-29, 12:59

You don’t need to set any permission to access the secure element or to use the ISO14443Connection. However, if you want to access the phone’s secure element, the MIDlet has to be in the Trusted 3rd party security domain (has to be signed with a trusted third party certificate).

If the MIDlet is not signed with a third party certificate, you get the security exception that you were mentioning.

The correct url for accessing the secure element on the phone is “internal.se.url”.

On the 6131 NFC SDK Emulator, the url for accessing the internal card in the TicketingExample is “internal.sc.url”, as this example uses an emulated internal card.

**Alex_Polt** · 2007-03-29, 13:20

Thank you it works now.

**tdelazzari** · 2007-04-10, 09:10

Originally Posted by Raluca_

the MIDlet has to be in the Trusted 3rd party security domain (has to be signed with a trusted third party certificate).

Please can you tell me how to do this for the NOKIA 6131? We tried a couple Verisign Class 3 certs but we still have a Security Exception. Is this certificate linked to Venyon?

**Alex_Polt** · 2007-04-10, 11:33

We are using Thawte certificate, it doesn't deal with Venyon at all. Just certificate to sign code.

**tdelazzari** · 2007-04-10, 12:33

Do you know where I can test a free trial certificate ? Twate seems to propose free trials for SSL Web Servers' certs only.
EDIT: We have a SecurityException while opening an ISO14443Connection on internal.mf.url. Is there a JAD permission attribute for this or certificate is the only way?

**yakdogan** · 2007-04-10, 14:26

Originally Posted by Raluca_

You don’t need to set any permission to access the secure element or to use the ISO14443Connection. However, if you want to access the phone’s secure element, the MIDlet has to be in the Trusted 3rd party security domain (has to be signed with a trusted third party certificate).

If the MIDlet is not signed with a third party certificate, you get the security exception that you were mentioning.

Sorry I'm not clear about it !
Do i need a signed MIDlet with a third party certificate also to test only with emulator without a 6131 real phone?
How can I get a third party certificate (trial) for development goals?

Best regards.

**Raluca_** · 2007-04-10, 14:41

Originally Posted by yakdogan

Sorry I'm not clear about it !
Do i need a signed MIDlet with a third party certificate also to test only with emulator without a 6131 real phone?
How can I get a third party certificate (trial) for development goals?

Best regards.

When using the 6131 NFC Emulator, you can change the Security level and simulate, for example, the "manufacturer security level", where your MIDlet is treated as a MIDlet provided by Nokia. By doing this, you don't have to sign the MIDlet if you only want to test it on the emulator.

You can find more information about how to change the Security levels in section 11 (Emulating MIDlet suite security issues) of the User's Guide.

However, if you want to try the MIDlet on a real phone, you will have to have it signed with a trusted third party certificate.

**tdelazzari** · 2007-04-10, 15:14

Do you know where we can download a code signing trial certificate to work with MIDlets ?

**tdelazzari** · 2007-04-11, 15:21

Originally Posted by Alex_Polt

We are using Thawte certificate, it doesn't deal with Venyon at all. Just certificate to sign code.

Well I think we'll have to buy one. Can you tell me which certificate we have to buy from Thwate ? Code Signing for JavaSoft dev ? 200$ a year

**Alex_Polt** · 2007-04-12, 09:49

Originally Posted by tdelazzari

Well I think we'll have to buy one. Can you tell me which certificate we have to buy from Thwate ? Code Signing for JavaSoft dev ? 200$ a year

Yes exactly that one.

**geri-m** · 2007-04-12, 11:21

You do get a discount from Thawte when you say that it is for an acadmical institution; actually this needs some negotiation ;-)

**mkdani** · 2007-10-01, 13:14

Hello
I want to read and write the external mifare cards(ultralite/1K) using nokia 6131.
When I am trying to run the example 'MFStandardExampleMidlet' on the real phone, it gives an error msg. 'java.lang.SecurityException'.
I am getting the same error for any other examples. But on emulator these examples are working fine.

**Alex_Polt** · 2007-10-01, 14:09

MFStandardExampleMidlet connects to Secure Element. To do this MIDlet should be signed. If MIDlet not signed it throws the java.lang.SecurityException.

**mkdani** · 2007-10-09, 05:44

Is it necessary to sign MIDlet for reading/writing external mifare cards?

Discussion Board

Thread: ISO14443Connection Security Exception

Thread Tools

Search Thread

Rate This Thread

Display

Similar Threads

VS.Net 2003 Carbide 2.01 and epoc32.exe

Security Exception in Socket creation

bluetooth Security Block exception

i got the Security Exception when i call the

can not successfully link any sample using .NET

Posting Permissions