摘要 |
A method ( 100 ) and an apparatus ( 210 ) for providing enhanced security using service provider authentication. In addition to authenticating an application signature ( 245 ) against a root certificate ( 235 ) stored on the network node ( 210 ), a first carrier identification ( 250 ) associated with the application ( 240 ) is compared to a second carrier identification ( 255 ). If the first and second carrier identifications match, then the application can be assigned to a trusted protection domain and granted permissions which provide privileged access to the network node. For example, the application can be granted permission to be installed and/or executed on the network node. Otherwise the application can be denied privileged access. Accordingly, a carrier's applications will be only installed onto network nodes that are intended recipients of the applications.
|