Security Policies and Code Signing

Code signing was originally introduced in the Smartphone platform to address mobile operator concerns about malicious software affecting the security of their mobile networks. With Windows Mobile 5.0, the security model is extended to Pocket PC also. Smartphones support a one- or two-tier security model; Pocket PCs support only the one-tier model. Table 6-2 shows the differences between security tiers.

Table 6-2. Windows Mobile 5.0 Security Configurations

Authentication Level

Two-Tier Security (Most Smartphones)

One-Tier Security (Pocket PCs)

Signed with a Privileged Certificate

Application may access privileged and normal APIs and registry keys

Application may access privileged and normal APIs and registry keys

Signed ...

Get Microsoft® Mobile Development Handbook now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.