Abstract: The invention relates to a device with an image sensor for forming image information about the environment of the device, comprising at least one object, wherein the image information comprises an image of the object. The device also comprises a display for displaying a view of the environment of the device, positioning means for determining the position of the device, and at least one set of communication means that comprise a receiver for receiving information related to the one object (14), including the position of the object. The device comprises a control block (8) for determining the position of the image of the object from image information intended to be displayed by the display.

Abstract: A data blob has an operator's certificate that specifies a network. The data blob is encrypted by the network using a private key that authenticates that a user device owns a MAC address. The network sends the encrypted data blob to the user device, which decrypts it using a private key that is locally stored in the user device. From that the user device obtains the operator's certificate, locks the user device to a network specified by the operator's certificate, and sends a response message signed with the private key. The network grants access to the user device based on the signed response message. Various embodiments and further details are detailed. This technique is particularly useful for a WiMAX or WLAN/WiFi network in which there is no SIM card to lock the device to the network.

Abstract: An improved system and method for safe booting an electronic device. In situations such as where a virus is infecting various devices within a network, the present invention provides an authentication centre with the ability to instruct a device on the network to safe boot. During the safe boot, it can be arranged such that no third party applications are run, only backup, restoration, or uninstallation of programs are possible, and/or only programs in the device's read-only memory are loaded. The present invention also provides a user with the ability to go through the boot process in a step-by-step manner.

Abstract: Integrity checking of a software module to be used in a mobile communication terminal (101) is illustrated. The terminal (101) is capable of communicating in a mobile communication system (100) and the software module is stored on a removable memory unit (103) connected to the terminal (101). The terminal (101) communicates via the mobile communication system (100) with the software provider (125). During the communication a digitally signed data block comprising a reference value for use during integrity checking of said software module is received.

Abstract: A data blob has an operator's certificate that specifies a network. The data blob is encrypted by the network using a private key that authenticates that a user device owns a MAC address. The network sends the encrypted data blob to the user device, which decrypts it using a private key that is locally stored in the user device. From that the user device obtains the operator's certificate, locks the user device to a network specified by the operator's certificate, and sends a response message signed with the private key. The network grants access to the user device based on the signed response message. Various embodiments and further details are detailed. This technique is particularly useful for a WiMAX or WLAN/WiFi network in which there is no SIM card to lock the device to the network.

Abstract: The present invention relates to a method and system for testing programs. In the method, authorization to use is determined for a program. In the method, a grant message of authorization is produced to grant temporally restricted authorization to use for the program, it is verified that the grant message of authorization is suitable to be utilized only in the device and the verified grant message of authorization is transmitted to the device. In the device the verification is checked, the authorization to use transmitted in the grant message of authorization is determined, and authorization to use according to the grant message of authorization are given for the program to be tested, if the checking shows that the grant message of authorization is intended for the device. The invention also relates to a device in which the method is applied.

Abstract: An improved system and method for safe booting an electronic device. In situations such as where a virus is infecting various devices within a network, the present invention provides an authentication centre with the ability to instruct a device on the network to safe boot. During the safe boot, it can be arranged such that no third party applications are run, only backup, restoration, or uninstallation of programs are possible, and/or only programs in the device's read-only memory are loaded. The present invention also provides a user with the ability to go through the boot process in a step-by-step manner.

Abstract: The invention relates to a device (2) with an image sensor (3) for forming image information about the environment of the device (2), comprising at least one object (14), wherein the image information comprises an image (14?) of the object. The device (2) also comprises a display (3.5, 5) for displaying a view of the environment of the device, positioning means (11) for determining the position of the device (2), and at least one set of communication means (4, 9) that comprise a receiver (4.2, 9.2) for receiving information related to the one object (14), including the position of the object (14). The device (2) comprises a control block (8) for determining the position of the image (14?) of the object from image information intended to be displayed by the display (3.5, 5).

Abstract: The present invention relates to a method and system for testing programs. In the method, authorization to use is determined for a program. In the method, a grant message of authorization is produced to grant temporally restricted authorization to use for the program, it is verified that the grant message of authorization is suitable to be utilized only in the device and the verified grant message of authorization is transmitted to the device. In the device the verification is checked, the authorization to use transmitted in the grant message of authorization is determined, and authorization to use according to the grant message of authorization are given for the program to be tested, if the checking shows that the grant message of authorization is intended for the device. The invention also relates to a device in which the method is applied.

Abstract: Integrity checking of a software module to be used in a mobile communication terminal (101) is illustrated. The terminal (101) is capable of communicating in a mobile communication system (100) and the software module is stored on a removable memory unit (103) connected to the terminal (101). The terminal (101) communicates via the mobile communication system (100) with the software provider (125). During the communication a digitally signed data block comprising a reference value for use during integrity checking of said software module is received.

Abstract: The invention relates to a method for using a service (7) at a terminal (6). In the method, for using a service (7), at least one certificate is transmitted (303, 406) from the terminal (6) to said service (7). In the service (7), requirements are set for the data content of the certificate. Information about said requirements is transmitted (301) from the service (7) to the terminal (6), in which a certificate acquisition step (402, 403, 404) is taken to acquire a certificate complying with the requirements, and a certificate transmission step (303, 406) is taken to transmit the acquired certificate to said service (7). The invention also relates to a system (1), in which the method is applied, as well as to a terminal (6) to be used in the system (1).

Abstract: The invention relates to a system and a method for using at least two data processors (1a, 1b, 1c), which data processors (1a, 1b, 1c) are arranged to be controlled preferably by means of at least one control device (2, 4). At least one set of local communication means (4) is coupled to each data processor (1a, 1b, 1c), and at least one set of local communication means (4) is coupled to each control device (2, 3), which local communication means (4), coupled to the control devices 82, 3) and the data processors (1a, 1b, 1c), communicate with each other in a wireless manner, wherein at least one control device (2, 3) is arranged to control at least two data processors (1a, 1b, 1c) in a wireless manner.

Abstract: The present invention resides in a system for electronic trading wherein