Nokia 6680 - Security

background image

Security

Phone and SIM

PIN code request

—When active, the code is requested

each time the phone is switched on. Deactivating the
personal identification number (PIN) code request may
not be allowed by some SIM cards. See ‘Glossary of PIN
and lock codes’, p. 95.

PIN code

,

PIN2 code

, and

Lock code

—You can change the

lock code, PIN code, and PIN2 code. These codes can only
include the numbers from 0 to 9. See ‘Glossary of PIN and
lock codes’, p. 95.

Avoid using access codes similar to the emergency
numbers to prevent accidental dialling of the emergency
number.

If you forget any of these codes, contact your service
provider.

Autolock period

—You can set an autolock period, a time-

out after which the phone automatically locks and can be
used only if the correct lock code is entered. Enter a
number for the time-out in minutes, or select

None

to turn

off the autolock period.

To unlock the phone, enter the lock code.

Note: When the phone is locked, calls in offline

profile to certain emergency numbers programmed into
your phone are still possible.

Tip! To lock the phone manually, press

. A list of

commands opens. Select

Lock phone

.

Lock if SIM changed

—You can set the phone to ask for the

lock code when an unknown SIM card is inserted into your
phone. The phone maintains a list of SIM cards that are
recognised as the owner’s cards.

background image

Tools

95

Copyright © 2005 Nokia. All rights reserved.

Fixed dialling

—You can restrict calls and text messages

from your phone to selected phone numbers, if supported
by your SIM card. You need the PIN2 code for this function.
To view the list of fixed dialling numbers, press

, and

select

Tools >

Settings >

Security

> Phone and SIM

>

Fixed dialling

. To add new numbers to the fixed dialling

list, select

Options >

New contact

or

Add from Contacts

.

When you use

Fixed dialling

, packet data connections are

not possible, except when sending text messages over a
packet data connection. In this case, the message centre
number and the recipient’s phone number must be
included on the fixed dialling list.

Options in the

Fixed dialling

view are

Open

,

Call

,

Activ. fixed dialling

/

Deact. fixed dialling

,

New contact

,

Edit

,

Delete

,

Add to Contacts

,

Add from Contacts

,

Find

,

Mark/Unmark

,

Help

, and

Exit

.

Note: When security features that restrict calls are

in use (such as

Call barring

,

Closed user group

, and

Fixed dialling

) calls still may be possible to the official

emergency numbers programmed into your phone.

Closed user group

(network service)—You can specify a

group of people to whom you can call and who can call
you.

Confirm SIM services

(network service)—You can set the

phone to display confirmation messages when you are
using a SIM card service.

Glossary of PIN and lock codes

Personal identification number (PIN) code—This code
protects your SIM card against unauthorised use. The PIN
code (4 to 8 digits) is usually supplied with the SIM card.
After three consecutive incorrect PIN code entries, the PIN
code is blocked, and you need to unblock it before you can
use the SIM card again. See the information about the
PUK code in this section.

UPIN code—This code may be supplied with the USIM card.
The USIM card is an enhanced version of the SIM card and
is supported by UMTS mobile phones. The UPIN code
protects the USIM card against unauthorised use.

PIN2 code—This code (4 to 8 digits) is supplied with some
SIM cards, and is required to access some functions in
your phone.

Lock code—This code (5 digits) can be used to lock the
phone to avoid unauthorised use. The factory setting for
the lock code is 12345. To avoid unauthorised use of your
phone, change the lock code. Keep the new code secret
and in a safe place separate from your phone.

Personal unblocking key (PUK) code and PUK2 code—These
codes (8 digits) are required to change a blocked PIN code
or PIN2 code, respectively. If the codes are not supplied
with the SIM card, contact the operator whose SIM card
is in your phone.

background image

Tools

96

Copyright © 2005 Nokia. All rights reserved.

UPUK code—This code (8 digits) is required to change a
blocked UPIN code. If the code is not supplied with the
USIM card, contact the operator whose USIM card is in
your phone.

Wallet code—This code is required to use the wallet
services. See ‘Wallet’, p. 72.

Certificate management

Digital certificates do not guarantee safety; they are used
to verify the origin of software.

In the certificate management main view, you can see a
list of authority certificates that are stored in your phone.
Press

to see a list of personal certificates, if available.

Options in the certificate management main view

are

Certificate details

,

Delete

,

Trust settings

,

Mark/Unmark

,

Help

, and

Exit

.

Glossary: Digital certificates are used to verify the

origin of the XHTML or WML pages and installed
software. However, they can only be trusted if the
origin of the certificate is known to be authentic.

Digital certificates should be used if you want to connect
to an online bank or another site or remote server for
actions that involve transferring confidential information.
They should also be used if you want to reduce the risk of
viruses or other malicious software and be sure of the

authenticity of software when downloading and installing
software.

Important: Even if the use of certificates makes the

risks involved in remote connections and software
installation considerably smaller, they must be used
correctly in order to benefit from increased security. The
existence of a certificate does not offer any protection by
itself; the certificate manager must contain correct,
authentic, or trusted certificates for increased security to
be available. Certificates have a restricted lifetime. If

Expired certificate

or

Certificate not valid yet

is shown

even if the certificate should be valid, check that the
current date and time in your phone are correct.

View certificate details—check authenticity

You can only be sure of the correct identity of a server
when the signature and the period of validity of a server
certificate have been checked.

You are notified on the phone display if the identity of the
server is not authentic or if you do not have the correct
security certificate in your phone.

To check certificate details, scroll to a certificate, and
select

Options >

Certificate details

. When you open

certificate details, the validity of the certificate is checked,
and one of the following notes may be displayed:

background image

Tools

97

Copyright © 2005 Nokia. All rights reserved.

Certificate not trusted

—You have not set any

application to use the certificate. See ‘Change the trust
settings’, p. 97.

Expired certificate

—The period of validity has ended

for the selected certificate.

Certificate not valid yet

—The period of validity has

not yet begun for the selected certificate.

Certificate corrupted

—The certificate cannot be used.

Contact the certificate issuer.

Change the trust settings

Before changing any certificate settings, you must make
sure that you really trust the owner of the certificate and
that the certificate really belongs to the listed owner.

Scroll to an authority certificate, and select

Options >

Trust settings

. Depending on the certificate, a list of the

applications that can use the selected certificate is shown.
For example:

Symbian installation

:

Yes

—The certificate is able to

certify the origin of a new Symbian operating system
application.

Internet

:

Yes

—The certificate is able to certify servers.

App. installation

:

Yes

—The certificate is able to certify

the origin of a new Java application.

Select

Options

> Edit trust setting

to change the value.