A mechanism for secure, fine-grained dynamic provisioning of applications on small devices

As small, secure devices become more powerful and more wide spread, it has become desirable to support the dynamic provisioning and updating of multiple applications on such devices. This paper presents a simple mechanism for performing such provisioning and updating, even if the applications are mutually distrustful. The mechanism extends CLDC Java technology with a classfile attribute that carries the certificates necessary to enable the added security.