Closed Bug 1118098 Opened 6 years ago Closed 3 years ago

[Secure Element] SE needs to perform ACE checks before transmitting APDU


(Firefox OS Graveyard :: NFC, defect)

Gonk (Firefox OS)
Not set


(Not tracked)



(Reporter: psiddh, Unassigned)



SE stack should be integrated with ACE module before performing any channel related operations. These checks should be part of sanity checks performed in parent process of SE stack
No longer depends on: 1118096
No longer depends on: 1118097
Blocks: 1118099
No longer blocks: 1118099
Depends on: 1118097
No longer depends on: 1118097
Blocks: 1119152
No longer blocks: 1119152
Initial integration with ACE on opening channel was done in bug 884594. 
HCI integration with ACE is being implemented in bug 1165340.

Closing channel does not require ACE checks. If channel is opened it means that ACE checks before opening were successful. It is almost impossible that Access Rules would change between channel opening and closing. Nevertheless we should always be able to close a channel because open channel blocks SIM resources.

Basing on the above I'm changing the name of this bug to support ACE checks on APDU transmit. Integration on transmit requires APDU filtering support from bug 1137533.
Depends on: 1137533
Hardware: x86_64 → ARM
Summary: SecureElement : SE to Integrate with ACE module before opening / transmitting / closing the channels. → [Secure Element] SE needs to perform ACE checks before transmitting APDU
Firefox OS is not being worked on
Closed: 3 years ago
Resolution: --- → WONTFIX
You need to log in before you can comment on or make changes to this bug.