Capability Descriptions
Basic capabilities
LocalServices
Grants access to sending or receiving information through USB, IR, and point-to-point Bluetooth profiles. These services do not usually incur a cost for the mobile device user.
ReadUserData
Grants read access to confidential user data. System servers and application engines are free to grant this restriction level to their data.
WriteUserData
Grants write access to confidential user data. System servers and application engines are free to grant this restriction level to their data.
NetworkServices
Grants access to remote services (such as dialing a number or sending a text message), which might incur a cost for the mobile device user.
UserEnvironment
Grants access to recording the user’s voice and using the camera.
Extended capabilities
Location
Grants access to data about the location of the device.
SwEvent
Grants the right to simulate key presses and pen input and to capture such events from any program. When the application has user input focus, the application does not need SwEvent to dispatch key or pen events.
ProtServ
Grants the right to a server to register with a protected name. Protected names start with an “!” (exclamation point). The kernel prevents servers without the ProtServ capability from using such a name, therefore preventing protected servers from being impersonated.
TrustedUI
Grants the right to create a trusted UI session, and, therefore, to display dialogs in a secure UI environment.
Trusted UI dialogs are rare. They must be used only when confidentiality and security are critical; for example, for password dialogs. Normal access to the user interface and screen does not require this capability.
PowerMgmt
Grants the right to kill any process in the system, to power-off unused peripherals, and to cause the mobile phone to switch its machine state (go into stand-by, to wake up, or to power down completely).
SurroundingsDD
Grants access to logical device drivers that provide input information about the surroundings of the device.
ReadDeviceData
Grants read access to sensitive system data (confidential network operator, mobile device manufacturer, and device settings).
WriteDeviceData
Grants write access to sensitive system data (settings that control the behavior of the device).
Accessible via Certified Signed
CommDD
Grants access to communication device drivers.
DiskAdmin
Grants the right to disk administration functions that affect more than one file or directory (or overall file-system integrity and behavior, etc.), such as formatting a drive.
MultimediaDD
Controls access to all multimedia device drivers (sound, camera, etc.).
NetworkControl
Grants the right to modify or access network protocol controls.
Manufacturer-approved capabilities
AllFiles
Grants visibility to all files in the system and extra write access to files under /private.
For more information, see File locations in the Symbian OS Library.
DRM (digital rights management)
Grants access to alter DRM-protected content. Playback of such content does not require the DRM capability.
TCB
Grants access to the /sys and /resource directories in the device.
For more information, see File locations in the Symbian OS Library.
Learn more about
Capability granting process
Symbian Signed
Testing
