Mark Cataldo / Louis Finkelstein 1 st March, 2001 Slide 1 MExE...
-
date post
18-Dec-2015 -
Category
Documents
-
view
224 -
download
0
Transcript of Mark Cataldo / Louis Finkelstein 1 st March, 2001 Slide 1 MExE...
![Page 1: Mark Cataldo / Louis Finkelstein 1 st March, 2001 Slide 1 MExE mcatald1@motorola.commcatald1@motorola.com +44 (0) 777 55 8 22 88 louisf@labs.mot.comlouisf@labs.mot.com.](https://reader035.fdocuments.in/reader035/viewer/2022062216/56649d235503460f949f9783/html5/thumbnails/1.jpg)
Mark Cataldo / Louis Finkelstein1st March, 2001
Slide 1
MExMExEE
[email protected] +44 (0) 777 55 8 22 88
[email protected] +1 847 576 4441
MExEMExEMMobile obile ExExecution ecution
EEnvironmentnvironment
…making the multimedia internet …making the multimedia internet mobile…mobile…
![Page 2: Mark Cataldo / Louis Finkelstein 1 st March, 2001 Slide 1 MExE mcatald1@motorola.commcatald1@motorola.com +44 (0) 777 55 8 22 88 louisf@labs.mot.comlouisf@labs.mot.com.](https://reader035.fdocuments.in/reader035/viewer/2022062216/56649d235503460f949f9783/html5/thumbnails/2.jpg)
Mark Cataldo / Louis Finkelstein1st March, 2001
Slide 2
MExMExEE
AgendaAgenda
MExE timetableMExE timetable2G and 3G Services2G and 3G ServicesMExE overviewMExE overviewMExE functionalityMExE functionalityMExE domains and securityMExE domains and securityMExE Release 4 issuesMExE Release 4 issuesMExE Release 5MExE Release 5
![Page 3: Mark Cataldo / Louis Finkelstein 1 st March, 2001 Slide 1 MExE mcatald1@motorola.commcatald1@motorola.com +44 (0) 777 55 8 22 88 louisf@labs.mot.comlouisf@labs.mot.com.](https://reader035.fdocuments.in/reader035/viewer/2022062216/56649d235503460f949f9783/html5/thumbnails/3.jpg)
Mark Cataldo / Louis Finkelstein1st March, 2001
Slide 3
MExMExEE
MExE TimetableMExE Timetable
MExE (Release 98)MExE (Release 98)
WAP and PersonalJava classmarks
approved 2Q99
MExE (Release 99)MExE (Release 99)
SIM security enhancements
Quality of Service management
approved 4Q99
MExE (Release 4)MExE (Release 4)
Java CLDC/MIDP classmark
other updates/additions
approved 4Q00
![Page 4: Mark Cataldo / Louis Finkelstein 1 st March, 2001 Slide 1 MExE mcatald1@motorola.commcatald1@motorola.com +44 (0) 777 55 8 22 88 louisf@labs.mot.comlouisf@labs.mot.com.](https://reader035.fdocuments.in/reader035/viewer/2022062216/56649d235503460f949f9783/html5/thumbnails/4.jpg)
Mark Cataldo / Louis Finkelstein1st March, 2001
Slide 4
MExMExEE
AgendaAgenda
MExE timetableMExE timetable2G and 3G Services2G and 3G ServicesMExE overviewMExE overviewMExE functionalityMExE functionalityMExE domains and securityMExE domains and securityMExE Release 4 issuesMExE Release 4 issuesMExE Release 5MExE Release 5
![Page 5: Mark Cataldo / Louis Finkelstein 1 st March, 2001 Slide 1 MExE mcatald1@motorola.commcatald1@motorola.com +44 (0) 777 55 8 22 88 louisf@labs.mot.comlouisf@labs.mot.com.](https://reader035.fdocuments.in/reader035/viewer/2022062216/56649d235503460f949f9783/html5/thumbnails/5.jpg)
Mark Cataldo / Louis Finkelstein1st March, 2001
Slide 5
MExMExEE
2G mobile services2G mobile services
• Service creation before Release 99Service creation before Release 99
• Supplementary servicesSupplementary services
• limited, expensive to develop, difficult to deploy, limited uselimited, expensive to develop, difficult to deploy, limited use
• isolated from 3isolated from 3rdrd party services developers, no internet party services developers, no internet
• offered operators same bland services and no differentiationoffered operators same bland services and no differentiation
• Service creation since Release 99Service creation since Release 99
• services as a general principle not standardisedservices as a general principle not standardised
• instead toolkits standardised, and services created using the toolkitsinstead toolkits standardised, and services created using the toolkits
• Seamless internet and intranet accessSeamless internet and intranet access
• compatibility with internet multimedia communicationscompatibility with internet multimedia communications
![Page 6: Mark Cataldo / Louis Finkelstein 1 st March, 2001 Slide 1 MExE mcatald1@motorola.commcatald1@motorola.com +44 (0) 777 55 8 22 88 louisf@labs.mot.comlouisf@labs.mot.com.](https://reader035.fdocuments.in/reader035/viewer/2022062216/56649d235503460f949f9783/html5/thumbnails/6.jpg)
Mark Cataldo / Louis Finkelstein1st March, 2001
Slide 6
MExMExEE
3G mobile multimedia services3G mobile multimedia services
• mobile phones fully internet integratedmobile phones fully internet integrated
• new operator/3new operator/3rdrd party IP multimedia services party IP multimedia services
• new personalised IP multimedia new personalised IP multimedia servicesservices rapidly rapidly developed to differentiate operators, reduce “churn”developed to differentiate operators, reduce “churn”
• generally no services standardised, but enabled using generally no services standardised, but enabled using 3GPP services toolkits (MExE, OSA, CAMEL, (U)SAT) 3GPP services toolkits (MExE, OSA, CAMEL, (U)SAT) and IP/IT toolkitsand IP/IT toolkits
• consistent “look’n’feel” of services within the VHEconsistent “look’n’feel” of services within the VHE
![Page 7: Mark Cataldo / Louis Finkelstein 1 st March, 2001 Slide 1 MExE mcatald1@motorola.commcatald1@motorola.com +44 (0) 777 55 8 22 88 louisf@labs.mot.comlouisf@labs.mot.com.](https://reader035.fdocuments.in/reader035/viewer/2022062216/56649d235503460f949f9783/html5/thumbnails/7.jpg)
Mark Cataldo / Louis Finkelstein1st March, 2001
Slide 7
MExMExEE
AgendaAgenda
MExE timetableMExE timetable2G and 3G Services2G and 3G ServicesMExE overviewMExE overviewMExE functionalityMExE functionalityMExE domains and securityMExE domains and securityMExE Release 4 issuesMExE Release 4 issuesMExE Release 5MExE Release 5
![Page 8: Mark Cataldo / Louis Finkelstein 1 st March, 2001 Slide 1 MExE mcatald1@motorola.commcatald1@motorola.com +44 (0) 777 55 8 22 88 louisf@labs.mot.comlouisf@labs.mot.com.](https://reader035.fdocuments.in/reader035/viewer/2022062216/56649d235503460f949f9783/html5/thumbnails/8.jpg)
Mark Cataldo / Louis Finkelstein1st March, 2001
Slide 8
MExMExEE
MExE OverviewMExE Overview
standardised execution environments in mobile phonestandardised execution environments in mobile phone WAP
PersonalJava
CLDC/MIDP Java
applicable to 3G, non-3G, cordless and fixed environmentsapplicable to 3G, non-3G, cordless and fixed environments
IT/IP multimedia services on mobile phones/serversIT/IP multimedia services on mobile phones/servers
write once, execute on many mobile phones
transfer of multimedia servicestransfer of multimedia services
up/downloading, network/3rd party, MExE-to-MExE services
standardised negotiation of capabilities with serversstandardised negotiation of capabilities with servers
![Page 9: Mark Cataldo / Louis Finkelstein 1 st March, 2001 Slide 1 MExE mcatald1@motorola.commcatald1@motorola.com +44 (0) 777 55 8 22 88 louisf@labs.mot.comlouisf@labs.mot.com.](https://reader035.fdocuments.in/reader035/viewer/2022062216/56649d235503460f949f9783/html5/thumbnails/9.jpg)
Mark Cataldo / Louis Finkelstein1st March, 2001
Slide 9
MExMExEE
MExE OverviewMExE Overview
Manufacturer’s mobile phone unitManufacturer’s mobile phone unit
Firmware Manufacturer’s firmwareManufacturer’s firmwareOS Mobile phone OSMobile phone OS
Telecomms GMS/UMTS softwareGMS/UMTS softwareAPIs APIs: APIs:
manufacturermanufacturer
MExE framework (MExE classmark 1, 2, 3)MExE framework (MExE classmark 1, 2, 3)
APIs , MExE classmark, MExE classmark
MExE
MExE executables, data and contentMExE executables, data and content
AppContent
DataAppApp
ContentData
DataContent
The MExE framework sits in mobile phone architecture…The MExE framework sits in mobile phone architecture…
HTTP/WSP (with capability exchange)HTTP/WSP (with capability exchange)
![Page 10: Mark Cataldo / Louis Finkelstein 1 st March, 2001 Slide 1 MExE mcatald1@motorola.commcatald1@motorola.com +44 (0) 777 55 8 22 88 louisf@labs.mot.comlouisf@labs.mot.com.](https://reader035.fdocuments.in/reader035/viewer/2022062216/56649d235503460f949f9783/html5/thumbnails/10.jpg)
Mark Cataldo / Louis Finkelstein1st March, 2001
Slide 10
MExMExEE
AgendaAgenda
MExE timetableMExE timetable2G and 3G Services2G and 3G ServicesMExE overviewMExE overviewMExE functionalityMExE functionalityMExE domains and securityMExE domains and securityMExE Release 4 issuesMExE Release 4 issuesMExE Release 5MExE Release 5
![Page 11: Mark Cataldo / Louis Finkelstein 1 st March, 2001 Slide 1 MExE mcatald1@motorola.commcatald1@motorola.com +44 (0) 777 55 8 22 88 louisf@labs.mot.comlouisf@labs.mot.com.](https://reader035.fdocuments.in/reader035/viewer/2022062216/56649d235503460f949f9783/html5/thumbnails/11.jpg)
Mark Cataldo / Louis Finkelstein1st March, 2001
Slide 11
MExMExEE
MExE functionalityMExE functionality
standardised set of MExE classmarks
WAP, WAP/PersonalJava, CLDC/MIDP
wide variety of multimedia servicesmultimedia services
with no standardised 3G services, MExE enables operator/3rd party multimedia service delivery to users
multimedia services supported by all devices of a given multimedia services supported by all devices of a given classmark (CM)classmark (CM)
CM1 devices support CM1 applications, CM2 devices support CM2 applications, CM3 devices support CM3 applications
sophisticated user interfacesophisticated user interface
advanced services presentation
Graphical User Interface (GUI)
![Page 12: Mark Cataldo / Louis Finkelstein 1 st March, 2001 Slide 1 MExE mcatald1@motorola.commcatald1@motorola.com +44 (0) 777 55 8 22 88 louisf@labs.mot.comlouisf@labs.mot.com.](https://reader035.fdocuments.in/reader035/viewer/2022062216/56649d235503460f949f9783/html5/thumbnails/12.jpg)
Mark Cataldo / Louis Finkelstein1st March, 2001
Slide 12
MExMExEE
MExE functionalityMExE functionality
customisation and personalisationcustomisation and personalisation
services “look and feel” (user interface and services personalisation)
services communication with network/non-network nodes
operator branding and differentiation
enables the Virtual Home Environment
user services managementuser services management
services download
services/data management
determine active services
![Page 13: Mark Cataldo / Louis Finkelstein 1 st March, 2001 Slide 1 MExE mcatald1@motorola.commcatald1@motorola.com +44 (0) 777 55 8 22 88 louisf@labs.mot.comlouisf@labs.mot.com.](https://reader035.fdocuments.in/reader035/viewer/2022062216/56649d235503460f949f9783/html5/thumbnails/13.jpg)
Mark Cataldo / Louis Finkelstein1st March, 2001
Slide 13
MExMExEE
MExE functionalityMExE functionality
re-use of existing technologiesre-use of existing technologies
software industry expertise, development tools
WAP, Internet and Intranet
existing APIs, (i.e. WAP, PersonalJava, Java MIDP/CLDC...)
capability negotiationcapability negotiation
allows servers and MExE mobiles to determine the most suitable content format for the device (e.g. depending on screen size, memory, colour capabilities etc.)
![Page 14: Mark Cataldo / Louis Finkelstein 1 st March, 2001 Slide 1 MExE mcatald1@motorola.commcatald1@motorola.com +44 (0) 777 55 8 22 88 louisf@labs.mot.comlouisf@labs.mot.com.](https://reader035.fdocuments.in/reader035/viewer/2022062216/56649d235503460f949f9783/html5/thumbnails/14.jpg)
Mark Cataldo / Louis Finkelstein1st March, 2001
Slide 14
MExMExEE
AgendaAgenda
MExE timetableMExE timetable2G and 3G Services2G and 3G ServicesMExE overviewMExE overviewMExE functionalityMExE functionalityMExE domains and securityMExE domains and securityMExE Release 4 issuesMExE Release 4 issuesMExE Release 5MExE Release 5
![Page 15: Mark Cataldo / Louis Finkelstein 1 st March, 2001 Slide 1 MExE mcatald1@motorola.commcatald1@motorola.com +44 (0) 777 55 8 22 88 louisf@labs.mot.comlouisf@labs.mot.com.](https://reader035.fdocuments.in/reader035/viewer/2022062216/56649d235503460f949f9783/html5/thumbnails/15.jpg)
Mark Cataldo / Louis Finkelstein1st March, 2001
Slide 15
MExMExEE
MExE Security DomainsMExE Security Domains
MExE Security Domains
secure environment for multimedia servicessecure environment for multimedia services
multiple Third Party domains permittedmultiple Third Party domains permitted
Third PartyThird Party
Operator Manufacturer Third Party
3 optional security domains (PKI certificates)3 optional security domains (PKI certificates)
optional
Untrusted
1 “untrusted” area1 “untrusted” area
mandatory
![Page 16: Mark Cataldo / Louis Finkelstein 1 st March, 2001 Slide 1 MExE mcatald1@motorola.commcatald1@motorola.com +44 (0) 777 55 8 22 88 louisf@labs.mot.comlouisf@labs.mot.com.](https://reader035.fdocuments.in/reader035/viewer/2022062216/56649d235503460f949f9783/html5/thumbnails/16.jpg)
Mark Cataldo / Louis Finkelstein1st March, 2001
Slide 16
MExMExEE
Operator’s DomainOperator’s Domain
only operator PKI authenticated multimedia services only operator PKI authenticated multimedia services permitted permitted
operators provide existing services and new operators provide existing services and new multimedia servicesmultimedia services
branded servicesbranded services
franchised services franchised services
customer supportcustomer support
service personalisationservice personalisation
defined set of mandatory security restrictions on defined set of mandatory security restrictions on downloaded applicationsdownloaded applications
![Page 17: Mark Cataldo / Louis Finkelstein 1 st March, 2001 Slide 1 MExE mcatald1@motorola.commcatald1@motorola.com +44 (0) 777 55 8 22 88 louisf@labs.mot.comlouisf@labs.mot.com.](https://reader035.fdocuments.in/reader035/viewer/2022062216/56649d235503460f949f9783/html5/thumbnails/17.jpg)
Mark Cataldo / Louis Finkelstein1st March, 2001
Slide 17
MExMExEE
Handset Manufacturer’s DomainHandset Manufacturer’s Domain
permits mobile phone upgradespermits mobile phone upgrades
“ “provisioned applications” upgradeprovisioned applications” upgrade
user interface upgradesuser interface upgrades
software updatessoftware updates
manufacturer’s multimedia servicesmanufacturer’s multimedia services
defined set of mandatory security restrictions on defined set of mandatory security restrictions on downloaded applicationsdownloaded applications
only manufacturer’s PKI authenticated multimedia only manufacturer’s PKI authenticated multimedia services permittedservices permitted
![Page 18: Mark Cataldo / Louis Finkelstein 1 st March, 2001 Slide 1 MExE mcatald1@motorola.commcatald1@motorola.com +44 (0) 777 55 8 22 88 louisf@labs.mot.comlouisf@labs.mot.com.](https://reader035.fdocuments.in/reader035/viewer/2022062216/56649d235503460f949f9783/html5/thumbnails/18.jpg)
Mark Cataldo / Louis Finkelstein1st March, 2001
Slide 18
MExMExEE
Third Party DomainThird Party Domain
““Administrator” determines whether Third Party Administrator” determines whether Third Party domain is controlled by the operator or userdomain is controlled by the operator or user
Operator controlled: Operator controlled: operator decides which (if any) PKI authenticated third party services
User controlled: User controlled: user decides which PKI authenticated third party services
defined set of mandatory security restrictions on defined set of mandatory security restrictions on downloaded applicationsdownloaded applications
![Page 19: Mark Cataldo / Louis Finkelstein 1 st March, 2001 Slide 1 MExE mcatald1@motorola.commcatald1@motorola.com +44 (0) 777 55 8 22 88 louisf@labs.mot.comlouisf@labs.mot.com.](https://reader035.fdocuments.in/reader035/viewer/2022062216/56649d235503460f949f9783/html5/thumbnails/19.jpg)
Mark Cataldo / Louis Finkelstein1st March, 2001
Slide 19
MExMExEE
Untrusted AreaUntrusted Area
user in control of the untrusted areauser in control of the untrusted area
user downloads any multimedia service as desireduser downloads any multimedia service as desired
call originationcall origination
screen accessscreen access
sending DTMF sending DTMF
add phonebook entryadd phonebook entry
downloaded multimedia services have limited downloaded multimedia services have limited permissions (only with explicit user authorisation)permissions (only with explicit user authorisation)
defined set of mandatory security restrictions on defined set of mandatory security restrictions on downloaded applicationsdownloaded applications
![Page 20: Mark Cataldo / Louis Finkelstein 1 st March, 2001 Slide 1 MExE mcatald1@motorola.commcatald1@motorola.com +44 (0) 777 55 8 22 88 louisf@labs.mot.comlouisf@labs.mot.com.](https://reader035.fdocuments.in/reader035/viewer/2022062216/56649d235503460f949f9783/html5/thumbnails/20.jpg)
Mark Cataldo / Louis Finkelstein1st March, 2001
Slide 20
MExMExEE
AgendaAgenda
MExE timetableMExE timetable2G and 3G Services2G and 3G ServicesMExE overviewMExE overviewMExE functionalityMExE functionalityMExE domains and securityMExE domains and securityMExE Release 4 issuesMExE Release 4 issues MExE Release 5MExE Release 5
![Page 21: Mark Cataldo / Louis Finkelstein 1 st March, 2001 Slide 1 MExE mcatald1@motorola.commcatald1@motorola.com +44 (0) 777 55 8 22 88 louisf@labs.mot.comlouisf@labs.mot.com.](https://reader035.fdocuments.in/reader035/viewer/2022062216/56649d235503460f949f9783/html5/thumbnails/21.jpg)
Mark Cataldo / Louis Finkelstein1st March, 2001
Slide 21
MExMExEE
Release 4 issuesRelease 4 issues
explicitly defining the certificate verification processexplicitly defining the certificate verification process
need to clearly identify the processneed to clearly identify the process
need to define demotion of signed content to Untrusted Areaneed to define demotion of signed content to Untrusted Area
only in specifically defined casesonly in specifically defined cases
demoted content restricted to same basic functionality as demoted content restricted to same basic functionality as untrusted applicationsuntrusted applications
pre-launch verification of executablespre-launch verification of executables
applications require to be verified before being launchedapplications require to be verified before being launched
clarify rules on operator applicationsclarify rules on operator applications
![Page 22: Mark Cataldo / Louis Finkelstein 1 st March, 2001 Slide 1 MExE mcatald1@motorola.commcatald1@motorola.com +44 (0) 777 55 8 22 88 louisf@labs.mot.comlouisf@labs.mot.com.](https://reader035.fdocuments.in/reader035/viewer/2022062216/56649d235503460f949f9783/html5/thumbnails/22.jpg)
Mark Cataldo / Louis Finkelstein1st March, 2001
Slide 22
MExMExEE
Release 4 issuesRelease 4 issues
administrator designation processadministrator designation process
tidying up terminologytidying up terminology
handling of operator applications on (U)SIM activityhandling of operator applications on (U)SIM activity
operator executables currently have special handlingoperator executables currently have special handling
should operator executables be permitted to execute even if should operator executables be permitted to execute even if the (U)SIM is not available?the (U)SIM is not available?
should operator executables also require pre-launch should operator executables also require pre-launch verification?verification?
(U)SIM terminology(U)SIM terminology
Replace terminology of “(U)SIM removal/insertion” with Replace terminology of “(U)SIM removal/insertion” with “accessing valid (U)SIM application”“accessing valid (U)SIM application”
![Page 23: Mark Cataldo / Louis Finkelstein 1 st March, 2001 Slide 1 MExE mcatald1@motorola.commcatald1@motorola.com +44 (0) 777 55 8 22 88 louisf@labs.mot.comlouisf@labs.mot.com.](https://reader035.fdocuments.in/reader035/viewer/2022062216/56649d235503460f949f9783/html5/thumbnails/23.jpg)
Mark Cataldo / Louis Finkelstein1st March, 2001
Slide 23
MExMExEE
AgendaAgenda
MExE timetableMExE timetable2G and 3G Services2G and 3G ServicesMExE overviewMExE overviewMExE functionalityMExE functionalityMExE domains and securityMExE domains and securityMExE Release 4 issuesMExE Release 4 issuesMExE Release 5MExE Release 5
![Page 24: Mark Cataldo / Louis Finkelstein 1 st March, 2001 Slide 1 MExE mcatald1@motorola.commcatald1@motorola.com +44 (0) 777 55 8 22 88 louisf@labs.mot.comlouisf@labs.mot.com.](https://reader035.fdocuments.in/reader035/viewer/2022062216/56649d235503460f949f9783/html5/thumbnails/24.jpg)
Mark Cataldo / Louis Finkelstein1st March, 2001
Slide 24
MExMExEE
R5 Enhancements and Improvements R5 Enhancements and Improvements WIDWID
General enhancements and improvementsGeneral enhancements and improvements
Investigate/identify VHE User Profile support Investigate/identify VHE User Profile support
Investigate/identify USAT/OSA/CAMEL interactionInvestigate/identify USAT/OSA/CAMEL interaction
Investigate/identify new CLI classmarkInvestigate/identify new CLI classmark
Investigate/identify terminal management supportInvestigate/identify terminal management support
Investigate/identify AT commands support Investigate/identify AT commands support
Investigate/identify Push services supportInvestigate/identify Push services support
Investigate/identify service provisioning supportInvestigate/identify service provisioning support
![Page 25: Mark Cataldo / Louis Finkelstein 1 st March, 2001 Slide 1 MExE mcatald1@motorola.commcatald1@motorola.com +44 (0) 777 55 8 22 88 louisf@labs.mot.comlouisf@labs.mot.com.](https://reader035.fdocuments.in/reader035/viewer/2022062216/56649d235503460f949f9783/html5/thumbnails/25.jpg)
Mark Cataldo / Louis Finkelstein1st March, 2001
Slide 25
MExMExEE
R5 Security Analysis ActivityR5 Security Analysis ActivityWIDWID
Conduct a threat analysis of MExE to review the security Conduct a threat analysis of MExE to review the security features for effectiveness in countering those threats.features for effectiveness in countering those threats.
Perform a security analysis for the different releases of MExE Perform a security analysis for the different releases of MExE and the associated classmarksand the associated classmarks
Identify issues in terms of security concepts and mechanisms Identify issues in terms of security concepts and mechanisms for MExEfor MExE
Identify potential threats, weaknesses and security shortfallsIdentify potential threats, weaknesses and security shortfalls
Create policy as countermeasures for identifiable weaknessesCreate policy as countermeasures for identifiable weaknesses
To map policies to the requirements within the specificationTo map policies to the requirements within the specification
The output TR will be used as a basis to potentially agree The output TR will be used as a basis to potentially agree CRs to S1's 22.057, T2's 23.057, and S3's 21.133 and CRs to S1's 22.057, T2's 23.057, and S3's 21.133 and 23.102. 23.102.