secure connection, a server may send a server certificate toyour device. Upon receipt, it is checked through an authoritycertificate stored in your device. You receive notification ifthe identity of the server is not authentic or if you do not havethe correct certificate in your device.Download a certificate from a web site, or receive a certificateas an e-mail attachment, or as a message sent through aBluetooth or infrared connection. Certificates should be usedwhen you connect to an online bank or a remote server totransfer confidential information. They should also be usedif you want to reduce the risk of viruses or other malicioussoftware, and to check the authenticity of software when youdownload and install software to your device.Tip: When you add a new certificate, check itsauthenticity.View certificate detailsYou can only be sure of the correct identity of a server whenthe signature and the validity period of a server certificatehave been checked.To view certificate details, select View details.One of the following notes may appear:• Certificate not trusted — You have not set anyapplication to use the certificate. You may want to changethe trust settings.• Expired certificate — The period of validity has ended forthe selected certificate.• Certificate not valid yet — The period of validity has notyet begun for the selected certificate.• Certificate corrupted — The certificate cannot be used.Contact the certificate issuer.Certificate trust settingsTrusting a certificate means that you authorise it to verifyweb pages, e-mail servers, software packages, and otherdata. Only trusted certificates can be used to verify servicesand software.Important: Even if the use of certificates makes therisks involved in remote connections and softwareinstallation considerably smaller, they must be used correctlyin order to benefit from increased security. The existence ofa certificate does not offer any protection by itself; thecertificate manager must contain correct, authentic, ortrusted certificates for increased security to be available.Certificates have a restricted lifetime. If "Expired certificate"or "Certificate not valid yet" is shown, even if the certificateshould be valid, check that the current date and time in yourdevice are correct.Before changing any certificate settings, you must make surethat you really trust the owner of the certificate and that thecertificate really belongs to the listed owner.To change the trust settings, select a certificate andOptions > Trust settings. Select an application field andpress the scroll key to select Yes or No. You cannot changethe trust settings of a personal certificate.Security and data management© 2007 Nokia. All rights reserved.108