Cep Terminals GSM/GPRS TERMINAL CT63 JAVA 6203 ユーザーズマニュアル
製品コード
6203
Java User’s Guide
7.3 Security Issues
44
wm_java_usersguide_v19
Page 44 of 109
2012-01-27
Confidential / Released
7.3
Security Issues
The developer should be aware of the following security issues. Security aspects in general are
discussed in
discussed in
.
7.3.1
Module Exchange Suite
The serial interface should be mechanically protected.
The copy protection rules for Java applications prevent opening, reading, copying, moving or
renaming of JAR files. It is not recommended that the name of a Java application (for example
<name>.jar) be used for a directory, since the copy protection will refuse access to open, copy
or rename such directories.
renaming of JAR files. It is not recommended that the name of a Java application (for example
<name>.jar) be used for a directory, since the copy protection will refuse access to open, copy
or rename such directories.
7.3.2
OTAP
•
A password should be used to update with OTA (SMS Authentication)
•
Parameters should be set to fixed values (AT^SJOTAP) whenever possible so that they
cannot be changed over the air.
cannot be changed over the air.
•
The HTTP server should be secure (e.g. access control via basic authentication).
•
Ensure that the OTAP server does not add a blank to the names of JAR and JAD files,
because this will cause problems with OTAP.
because this will cause problems with OTAP.