Risto Helin's Forum Nokia Blog
http://blogs.forum.nokia.com/blog/risto-helins-forum-nokia-blog
<p>Works for Forum Nokia where his task is to represent Nokia in Symbian Signed and Java Verified.</p>
Rippe2009-11-23T18:00:17ZSSL certificates in S60 3.0
http://blogs.forum.nokia.com/blog/risto-helins-forum-nokia-blog/2007/02/16/ssl-certificates-in-s60-3.0
There has been some discussion in various forums about how to install a SSL certificate to S60 3.0 device. I asked around and I'm planning on creating a short document around the subject. But first the quick way of sharing information - a blog! I hope this will provide some clarity to the subject. <br />
<p class="MsoNormal"><span lang="EN-GB" style="">An SSL certificate can be used for different purposes:<o:p></o:p></span></p>
<ul type="disc" style="margin-top: 0cm;">
<li style="" class="MsoNormal"><span lang="EN-GB" style="">Authenticating client to server (e.g. SSL/TLS client authentication)<o:p></o:p></span></li>
<li style="" class="MsoNormal"><span lang="EN-GB" style="">Authenticating server during SSL/TLS handshake<o:p></o:p></span></li>
</ul>
Using client certificates to authenticate a user<br />S60 only allows importing personal certificates and associated keys from .p12 files. The certificate must be a general X.509 certificate which is DER encoded. Private key and certificate file are to be packaged into a PKCS 12 package (.p12 format). The file can then be imported to the device, for example by using file transfer. <br /><br />Using the certificate to authenticate a web server<br />The certificate must be a general X.509 certificate which is DER encoded. In order to be able to import certificate, it must be recognized as a CA certificate to make it work. <br /><br />If certificate is not recognized as a CA certificate (meaning that key usage is not CertSigning and BasicConstrains doesn’t indicate that it is not a CA certificate), then you need to follow these steps<br /><br />Using a web server:<br />1. Copy the certificate file to Web server<br />2. Set the MIME type for the directory where the certificate is as application/x-x509-ca-cert <br />3. Use the web browser in the S60 device to browse the certificate<br />4. Import the certificateConnectivitySymbian C++2007-02-16T13:32:55ZRippe