Abstract: A secure element (SE) unit 102 holding service data used by an application is provided in a UIM card 100. Thus, when the user identify module (UIM) card 100 is transferred between portable terminals, service data and accompanying information of the application can be moved together with the UIM card 100 to another portable terminal. In addition, an access management unit 400 included in a portable terminal 200 compares UIM information of a UIM information storage unit 103 with UIM information, held by an authority information holding unit 205, of a UIM card of which use authority is possessed by an application. If they do not agree, access to service data stored in the SE unit 102 is restricted.

Abstract: A mobile telephone (1) includes a link establishment detection module (18) that detects establishment of a link with Bluetooth headphones (2), an application setting check module (17) that checks whether an application (12) to be started is set to inhibit playback through the Bluetooth headphones (2), a link termination control module (19) that terminates a link with the Bluetooth headphones (2) when establishment of the link with the Bluetooth headphones (2) is detected and setting to inhibit playback through the Bluetooth headphones (2) for the application (12) to be started is recognized, and a speaker control module (20) that switches output of the speaker (16) to mute when a link is terminated by the link termination control module (19).

Abstract: A first communication terminal is a communication terminal which executes an application using user data which can be output to a second communication terminal, and has a management data making section which makes management data including an access information of a server capable of transmitting the application, and a data transmitting section which transmits the user data and the management data to the second communication terminal.

Abstract: A mobile telephone (1) includes a link establishment detection module (18) that detects establishment of a link with Bluetooth headphones (2), an application setting check module (17) that checks whether an application (12) to be started is set to inhibit playback through the Bluetooth headphones (2), a link termination control module (19) that terminates a link with the Bluetooth headphones (2) when establishment of the link with the Bluetooth headphones (2) is detected and setting to inhibit playback through the Bluetooth headphones (2) for the application (12) to be started is recognized, and a speaker control module (20) that switches output of the speaker (16) to mute when a link is terminated by the link termination control module (19).

Abstract: Mobile unit 16 which can activate Java-AP software receives SDF (Security Descriptive File) 204 from administering server unit 18 which a trustworthy organization (a communication provider which administers mobile packet communication network 15) administers, and obtains ADF 205 from IP server unit 13 by using URL contained in the SDF, and obtains Jar file 206 from IP server unit 13 by using ADF 205, and installs in itself Java-AP containing these files. Java-AP, which is achieved by activating the installed Java-AP software, operates within the range of authorization expressed by policy information contained in SDF 204.

Abstract: An SE unit holding service data used by an application is provided in a UIM card. Thus, when the UIM card is transferred between portable terminals, service data and accompanying information of the application can be moved together with the UIM card to another portable terminal. In addition, an access management unit included in a portable terminal compares UIM information of a UIM information storage unit with UIM information, held by an authority information holding unit, of a UIM card of which use authority is possessed by an application. If they do not agree, access to service data stored in the SE unit is restricted.

Abstract: A mobile terminal capable of causing the user side to grasp whether or not a credit settlement service stops with a simple operation is provided. In the mobile terminal 10, validation and invalidation of a storage area within an IC chip assigned to an issuer application corresponding to one issuer are switched based on switching instruction information received from an issuer terminal 20 managed by one issuer. Then, when the issuer application starts, there is displayed in a lump whether or not the respective issuer applications are available on a display part 16, based on state information indicating whether or not the respective storage areas are validated. Therefore, in the mobile terminal 10, even if plural issuer applications are stored, it is possible to cause the user side to grasp which kind of the credit settlement service stops, with a simple operation of only starting a management application.

Abstract: An objective is to prevent a downloaded application from accessing data in an external memory unrelated to the application, and to achieve safer management of access to the external memory. An external memory function module 15 is a function module that controls access of an application downloaded in a cell phone 1, to an external memory 2. This external memory function module 15 has a bind ID acquirer 156 for acquiring a bind ID to specify the application downloaded, a discrimination ID acquirer 157 for acquiring a directory discrimination ID to specify an application permitted to access a directory, and an access controller 158 for checking the bind ID against the directory discrimination ID and for, when they coincide with each other, performing such control as to permit access of the application to the directory.

Abstract: An object of the present invention is to surely and readily prevent unauthorized use of a noncontact IC function incorporated in a mobile communication terminal, even in a state in which no signal can be sent through mobile communication to the mobile communication terminal. A mobile communication terminal 10 has a noncontact IC module 12 incorporating an IC chip 11; a slot 13 in which a UIM 20 is to be loaded, the UIM 20 storing connection information to be used for connection between the host terminal 10 and a mobile communication network; a memory unit 15 for storing information to identify UIM 20; an acquiring unit 16 for acquiring information to identify UIM 20 loaded in the slot 13; a comparing unit 17 for making a comparison between the information to identify the UIM 20, stored in the memory unit 15, and the information to identify the UIM 20, acquired by the acquiring unit 16; and a control unit 18 for controlling access to the IC chip 11, based on a result of the comparison by the comparing unit 17.

Abstract: Mobile unit 16 which can activate Java-AP software receives SDF (Security Descriptive File) 204 from administering server unit 18 which a trustworthy organization (a communication provider which administers mobile packet communication network 15) administers, and obtains ADF 205 from IP server unit 13 by using URL contained in the SDF, and obtains Jar file 206 from IP server unit 13 by using ADF 205, and installs in itself Java-AP containing these files. Java-AP, which is achieved by activating the installed Java-AP software, operates within the range of authorization expressed by policy information contained in SDF 204.

Abstract: The present invention provides an information processing device for estimating usage of contents and properly limiting functions realized through use of the contents in accordance with the estimation. Usage of contents is estimated by determining in which of cache memory means and content storage means the contents are stored. When the contents are processed or executed, it is determined whether to limit functions realized through processing or execution of the contents, on the basis of the estimated usage of the contents and function limit information showing a rule regarding limits on functions realized through processing or execution. On the basis of the determination, the functions realized through processing or execution of the contents are limited.

Abstract: A mobile communication terminal comprises: a download portion which downloads an application program from an outside WWW server, and secures a data region for reference parameters to which the application program refers at the time of execution; a control signal receiving portion which receives a control signal containing the reference parameters to which the application program refers, and a parameter saving portion which saves the reference parameters contained in the control signal to the data region.

Abstract: A terminal equipment and an application list display method are provided to display a list of identification information of applications in such a manner that a user can readily recognize a setup state of each application requiring setup of predetermined information in a data memory area. A terminal equipment 1 has a setup necessity determining unit 4 which refers to attribute information of an application to determine whether predetermined information to be used in running of the application needs to be preliminarily set in a setup information memory unit 52; and a setup state determining unit 6 which refers to the setup information memory unit 52 to determine whether the predetermined information is already set in a predetermined format, when the setup necessity determining unit 4 determines that the predetermined information needs to be set.

Abstract: An objective is to prevent an unauthorized application from falsifying and assuming specific information generated for access to an external memory, without permission, and to achieve safer management of access to the external memory. An external memory function module 15 is a function module to control access of applications 101A and 101B downloaded in a cell phone 1, to an external memory 2. This external memory function module 15 has an identifier acquirer 151 for acquiring an identifier from each of the applications 101A and 101B, a generator 153 for generating specific information to specify the application, based on identification information designated by the identifier acquired, a reserving section 154 for reserving a predetermined area of the external memory 2 as a directory for the application, and a writing section 155 for writing the specific information generated, in an attribute file of the external memory 2.

Abstract: When an application is activated, a mobile station 10 detects external devices 20, 30, 40 as candidates for a BLUETOOTH connection out of external devices existing in the surrounding area, and presents a list of the devices to a user. When the user selects from the list an external device 20 with which a connection is to be attempted to make, a link is established by a connection procedure according to a security level described in an ADF of the application. Namely, when “high” is described as the security level, an authentication process and an encryption process requiring input of a PIN are executed prior to the establishment of the link. On the other hand, when “low” is described as the security level, a link is established without executing these processes.

Abstract: A second communication terminal includes a data receiving section that receives management data including an access information of a server, from a first communication terminal; a storage section that stores applications; a list making section that makes a list of applications indicated by the received management data; a display section that displays lists; a request transmitting section that, when an application which is not stored in the storage section is selected from the list, transmits a transmission request for the application to the server by using the access information in the management data; and an application receiving section that receives the application transmitted from the server in response to the transmission request.

Abstract: It is an object of the present invention to provide a communication device, a digital signature verification method, and a digital signature generation method, in which the memory usage efficiency is improved without confidential information required for the verification or generation of a signature being easily leaked to the outside. The Java application judges whether signature verification is required for the received signature target data. When judging that signature verification is required, the Java application outputs the received signature target data to the PKI of the platform. The PKI verifies the signature that has been added to the data output by the Java application and performs signature generation, and then notifies the Java application.

Abstract: An objective is to prevent a downloaded application from accessing data in an external memory unrelated to the application, and to achieve safer management of access to the external memory. An external memory function module 15 is a function module that controls access of an application downloaded in a cell phone 1, to an external memory 2. This external memory function module 15 has a bind ID acquirer 156 for acquiring a bind ID to specify the application downloaded, a discrimination ID acquirer 157 for acquiring a directory discrimination ID to specify an application permitted to access a directory, and an access controller 158 for checking the bind ID against the directory discrimination ID and for, when they coincide with each other, performing such control as to permit access of the application to the directory.

Abstract: In a terminal device equipped with a function of running an application program, operation of an application program is suspended when an event is detected, the type of the event is predetermined, and event data representing the detected event is stored. Then, the terminal device delivers stored event data to the application program, after the suspended application is resumed.

Abstract: A first communication terminal (100) is a communication terminal which executes an application using user data which can be output to a second communication terminal (200), and has a management data making section (140) which makes management data including an access information of a server (300) capable of transmitting the application, and a data transmitting section (152) which transmits the user data and the management data to the second communication terminal (200).