5.1.1  Location of, access to, and security of, the user profile  p. 16

5.1.2  Support of the user profile  p. 17

5.1.3  User interface personalisation  p. 18

5.1.4  Virtual home environment  p. 19

5.2.1  User profile and capability negotiation relationship  p. 20

5.2.2  Capability negotiation characteristics  p. 20

5.2.3  Client content capability report  p. 22

5.2.4  Server role in capability negotiation  p. 22

5.2.5  Client-driven negotiation  p. 22

5.3.1  Service discovery  p. 22

5.3.2  Service transfer  p. 23

5.3.3  Service installation and configuration  p. 23

5.3.4  Service management  p. 23

5.3.5  Service termination  p. 23

5.3.6  Service deletion  p. 23

5.4.1  Journaling of network events  p. 24

5.4.2  User notification  p. 24

5.5.1  Introduction  p. 26

5.5.2  MExE QoS support  p. 26

5.5.3  MExE QoS manager  p. 27

5.5.4  Network control API  p. 27

5.5.5  MExE QoS API  p. 27

5.5.6  Sources of bearer service parameters  p. 28

5.5.7  QoS streams  p. 28

5.5.8  QoS security  p. 28

5.6.1  Generic charging support  p. 29

6.2.1  Full signature verification  p. 30

6.2.2  Optimised pre-launch signature verification  p. 30

6.3.1  MExE executable permissions for operator, manufacturer and third party security domains  p. 30

6.3.2  MExE executable permissions for untrusted MExE executables  p. 33

6.4.1  Launching of MExE executables when their valid RPK is not available  p. 35

6.4.2  Currently executing secure MExE executables when their valid RPK is no longer available  p. 35

6.6.1  Operator root public key  p. 36

6.6.2  Manufacturer root public key  p. 39

6.6.3  Third party root public key  p. 39

6.7.1  Certification requirements  p. 40

6.7.2  Certification administration requirements  p. 41

6.7.3  Example certification process  p. 41

6.7.4  Certificate Chain Verification  p. 42

6.8.1  Signed packages used for installation  p. 44

6.8.2  Installation of root certificates in a signed data package  p. 45

6.8.3  Installation of other signed data  p. 45

6.9.1  Certificate extension for removal of network access  p. 46

6.10.1  Certificate configuration message (CCM)  p. 47

6.13.1  Administrator root public key  p. 51

6.13.2  Provisioned mechanism for designating administrative responsibilities and adding third parties in a MExE device  p. 52

6.13.3  MExE administrator determination mechanism  p. 52

6.13.4  Administrator root certificate download mechanism  p. 55

7.1.1  WAP MExE devices  p. 56

7.1.2  High level architecture  p. 56

7.2.1  WAP components  p. 56

7.2.2  Services  p. 57

7.2.3  WAP charging support  p. 59

7.2.4  CC/PP over WSP (Classmark 1)  p. 59

7.3.1  Call control  p. 59

7.3.2  Local phonebook  p. 59

8.1.1  Classmark 2 MExE devices  p. 60

8.1.2  High level architecture  p. 60

8.2.1  High level functions  p. 60

8.2.2  CC/PP over HTTP (Classmark 2)  p. 63

8.2.3  Java charging support  p. 63

8.3.1  PersonalJava security  p. 63

8.3.2  Installing MExE native libraries  p. 64

9.1.1  Classmark 3 MExE devices  p. 64

9.1.2  High level architecture  p. 64

9.1.3  High level functionality  p. 65

9.2.1  Connected Limited Device Configuration (CLDC)  p. 65

9.2.2  Mobile Information Device Profile (MIDP)  p. 65

9.2.3  Required and optional MExE APIs  p. 66

9.2.4  Service discovery and management  p. 66

9.2.5  Transfer of capability negotiation information in Classmark 3  p. 67

9.3.1  CLDC security  p. 67

10.1.1  High level architecture  p. 68

10.2.1  High level functionality  p. 68

10.2.2  Network protocol support  p. 69

10.2.3  Power Management  p. 69

10.2.4  CLI charging support  p. 69

10.2.5  CC/PP over HTTP or WSP (Classmark 4)  p. 69

10.3.1  CLI Security  p. 70

A.1.1  Object common attributes  p. 71

A.1.2  Certificate common attributes  p. 71

A.1.3  Certificate attributes  p. 71

A.1.4  Specific X.509 certificate attributes  p. 71