3 security issues, 1 module exchange suite, 2 otap – Siemens XT65 User Manual

Java User’s Guide

7.3 Security Issues

54

s

wm_java_usersguide_v12

Page 54 of 123

2008-02-25

Confidential / Released

7.3

Security Issues

The developer should be aware of the following security issues. Security aspects in general are
discussed in

Chapter 12

.

7.3.1

Module Exchange Suite

The serial interface should be mechanically protected.

The copy protection rules for Java applications prevent opening, reading, copying, moving or
renaming of JAR files. It is not recommended that the name of a Java application (for example
<name>.jar) be used for a directory, since the copy protection will refuse access to open, copy
or rename such directories.

7.3.2

OTAP

•

A password should be used to update with OTA (SMS Authentication)

•

Parameters should be set to fixed values (AT^SJOTAP) whenever possible so that they
cannot be changed over the air.

•

The HTTP server should be secure. (e.g. Access control via basic authentication).