Symbian OS Platform Security: Software Development Using the Symbian OS Security Architecture (Paperback)
暫譯: Symbian OS 平台安全:使用 Symbian OS 安全架構進行軟體開發 (平裝本)

Craig Heath

Symbian OS Platform Security: Software Development Using the Symbian OS Security Architecture (Paperback)
  • 出版商: Wiley
  • 出版日期: 2006-04-01
  • 定價: $2,250
  • 售價: 1.8$399
  • 語言: 英文
  • 頁數: 274
  • 裝訂: Paperback
  • ISBN: 0470018828
  • ISBN-13: 9780470018828
  • 相關分類: 資訊安全

    • 立即出貨(限量) (庫存=4)

買這商品的人也買了...

商品描述

Description

Symbian OS is an advanced, customizable operating system, which is licensed by the world's leading mobile phone manufacturers. The latest versions incorporate an enhanced security architecture designed to protect the interests of consumers, network operators and software developers.

The new security architecture of Symbian OS v9 is relevant to all security practitioners and will influence the decisions made by every developer that uses Symbian OS in the creation of devices or add-on applications. Symbian OS Platform Security covers the essential concepts and presents the security features with accompanying code examples.

This introductory book highlights and explains:
* the benefits of platform security on mobile devices
* key concepts that underlie the architecture, such as the core principles of 'trust', 'capability' and data 'caging'
* how to develop on a secure platform using real-world examples
* an effective approach to writing secure applications, servers and plug-ins, using real-world examples
* how to receive the full benefit of sharing data safely between applications
* the importance of application certification and signing from the industry 'gatekeepers' of platform security
* a market-oriented discussion of possible future developments in the field of mobile device security

 

Table of Contents

About This Book.

Foreword.

About the Authors.

Author’s Acknowledgements.

Symbian Press Acknowledgements.

Part 1 Introduction to Symbian OS Platform Security.

1 Why a Secure Platform?

1.1 User Expectations of Mobile Phone Security.

1.2 What the Security Architecture Should Provide.

1.3 Challenges and Threats to Mobile Phone Security.

1.4 How Symbian OS Platform Security Fits into the Value Chain.

1.5 How Application Developers Benefit from the Security Architecture.

2 Platform Security Concepts.

2.1 Background Security Principles.

2.2 Architectural Goals.

2.3 Concept 1: The Process is the Unit of Trust.

2.4 Concept 2: Capabilities Determine Privilege.

2.5 Concept 3: Data Caging for File Access.

2.6 Summary.

viii CONTENTS

Part 2 Application Development for Platform Security.

3 The Platform Security Environment.

3.1 Building Your Application.

3.2 Developing on the Emulator.

3.3 Packaging Your Application.

3.4 Testing on Mobile Phone Hardware.

3.5 Summary.

4 How to Write Secure Applications.

4.1 What Is a Secure Application?

4.2 Analyzing the Threats.

4.3 What Countermeasures Can Be Taken?

4.4 Implementation Considerations.

4.5 Summary.

5 How to Write Secure Servers.

5.1 What Is a Secure Server?

5.2 Server Threat Modeling.

5.3 Designing Server Security Measures.

5.4 Server Implementation Considerations.

5.5 Summary.

6 How to Write Secure Plug-ins.

6.1 What Is a Secure Plug-In?

6.2 Writing Secure Plug-ins.

6.3 Plug-in Implementation Considerations.

6.4 Summary.

7 Sharing Data Safely.

7.1 Introduction to Sharing Data.

7.2 Categories of Data.

7.3 Deciding the Level of Trust.

7.4 Attacks on Data and Countermeasures.

7.5 Using System Services.

7.6 Summary.

Part 3 Managing Platform Security Attributes.

8 Native Software Installer.

8.1 Introduction to the Native Software Installer.

8.2 Validating Capabilities.

8.3 Identifiers, Upgrades, Removals and Special Files.

8.4 SIS File Changes for Platform Security.

8.5 Installing to and from Removable Media.

8.6 Summary.

9 Enabling Platform Security.

9.1 Responsibilities in Granting Capabilities.

9.2 Overview of the Signing Process.

9.3 Step-by-step Guide to Signing.

9.4 Revocation.

9.5 Summary.

Part 4 The Future of Mobile Device Security.

10 The Servant in Your Pocket.

10.1 Crystal-Ball Gazing.

10.2 Convergence, Content and Connectivity.

10.3 Enabling New Services.

10.4 New Security Technologies.

10.5 Summary.

Appendix A Capability Descriptions.

Appendix B Some Cryptography Basics.

Appendix C The Software Install API.

Glossary.

References.

Index.

商品描述(中文翻譯)

**描述**
Symbian OS 是一個先進且可自訂的作業系統,獲得全球領先的手機製造商授權。最新版本整合了增強的安全架構,旨在保護消費者、網路運營商和軟體開發者的利益。

Symbian OS v9 的新安全架構與所有安全從業人員相關,並將影響每位使用 Symbian OS 開發設備或附加應用程式的開發者的決策。Symbian OS 平台安全涵蓋了基本概念,並展示了安全功能及其相應的程式碼範例。

本書介紹並解釋了:
* 行動裝置平台安全的好處
* 架構背後的關鍵概念,例如「信任」、「能力」和數據「籠罩」的核心原則
* 如何使用實際範例在安全平台上進行開發
* 使用實際範例撰寫安全應用程式、伺服器和外掛的有效方法
* 如何充分利用應用程式之間安全共享數據的好處
* 應用程式認證和來自平台安全「守門人」的簽署的重要性
* 對行動裝置安全領域未來可能發展的市場導向討論

**目錄**
**關於本書**
**前言**
**關於作者**
**作者致謝**
**Symbian Press 致謝**
**第一部分 Symbian OS 平台安全介紹**
**1 為什麼需要安全平台?**
1.1 使用者對手機安全的期望
1.2 安全架構應提供的內容
1.3 手機安全的挑戰與威脅
1.4 Symbian OS 平台安全如何融入價值鏈
1.5 應用程式開發者如何從安全架構中受益
**2 平台安全概念**
2.1 背景安全原則
2.2 架構目標
2.3 概念 1:過程是信任的單位
2.4 概念 2:能力決定特權
2.5 概念 3:數據籠罩以控制檔案存取
2.6 總結
**第二部分 平台安全的應用程式開發**
**3 平台安全環境**
3.1 建立您的應用程式
3.2 在模擬器上開發
3.3 封裝您的應用程式
3.4 在手機硬體上測試
3.5 總結
**4 如何撰寫安全應用程式**
4.1 什麼是安全應用程式?
4.2 分析威脅
4.3 可以採取哪些對策?
4.4 實施考量
4.5 總結
**5 如何撰寫安全伺服器**
5.1 什麼是安全伺服器?
5.2 伺服器威脅建模
5.3 設計伺服器安全措施
5.4 伺服器實施考量
5.5 總結
**6 如何撰寫安全外掛**
6.1 什麼是安全外掛?
6.2 撰寫安全外掛
6.3 外掛實施考量
6.4 總結
**7 安全共享數據**
7.1 共享數據介紹
7.2 數據類別
7.3 決定信任程度
7.4 對數據的攻擊及對策
7.5 使用系統服務
7.6 總結
**第三部分 管理平台安全屬性**
**8 原生軟體安裝程式**
8.1 原生軟體安裝程式介紹
8.2 驗證能力
8.3 識別碼、升級、移除和特殊檔案
8.4 SIS 檔案變更以符合平台安全
8.5 從可移動媒體安裝和卸載
8.6 總結
**9 啟用平台安全**
9.1 授予能力的責任
9.2 簽署過程概述
9.3 簽署的逐步指南
9.4 撤銷
9.5 總結
**第四部分 行動裝置安全的未來**
**10 口袋中的僕人**
10.1 水晶球預測
10.2 融合、內容與連接性
10.3 啟用新服務
10.4 新的安全技術
10.5 總結
**附錄 A 能力描述**
**附錄 B 一些密碼學基礎**
**附錄 C 軟體安裝 API**
**詞彙表**
**參考文獻**
**索引**

類似商品

最後瀏覽商品 (5)