Connection Manager Security for Portable Navigation Devices
.gif "A hyphen indicates that the information in this topic is not relevant for this platform, or that the platform does not support the API that is listed.")
.gif "A checkmark indicates that the information in this topic is relevant for this platform, and that any API listed is also supported on this platform.")
10/16/2008
Applies to Windows Embedded NavReady
Connection Manager supports dual-homed devices, which are devices that can have multiple connections available and active. A dual-homed device frequently provides the most optimal behavior; however, it can be subject to special security threats, such as the potential for bridging between two networks.
The following example shows a situation in which a dual-homed device tries to establish multiple types of connections:
- A Windows Embedded CE powered device has an active Internet connection, and the user establishes a Desktop Pass-through (DTPT) connection.
Connections That Provide Enhanced Security
To help prevent bridging between two networks and possible leaking between two interfaces, Connection Manager supports connections that are more secure. Most of the OMA Client Provisioning (formerly WAP Client Provisioning) configuration service providers for Connection Manager enable you to specify the Secure parameter. This parameter enables you to provision an individual connection to be more secure.
DTPT connections are always configured as secured and therefore cannot be configured as secure. Setting the value of Secure to 0 is not supported for a DTPT connection.
You can determine whether a connection provides enhanced security by performing an XML query. You can also determine this by using the ConnMgrQueryDetailedStatus function, in which case the dwSecure flag indicates whether a connection provides enhanced security.