To make a trusted MIDlet suite, you first have to sign the MIDlet suite as explained in section Signing Procedure. When the MIDlet is installed in a MIDP 2.0 device, the authentication and authorization procedure is carried on, and if successful, the MIDlet suite will be installed with the appropriate rights.
The SDK contains a security simulation level called Run MIDlets within security domain specified by their certificates that can be used to test signed MIDlets. Only using it, the SDK will execute the authentication and authorization process on the executed MIDlet suites. In that case, the Application Management Service is in charge of the process of verifying the MIDlet-Jar-RSA-SHA1 attribute and run the suite in the protection domain associated with the root certificate.