In addition to MIDP 2.0 specification (JSR-118), The SATSA API also provides important security features.
The Security and Trust Services API (SATSA), (JSR 177) specification is a set of optional APIs that allows using interfaces to PKI certificates, private data storage, cryptographic operations and secure environment services for authentication, authorization, and identification for applications. Each SATSA API is optional and may be implemented independently from each other. The following four APIs are defined in the SATSA specification:
SATSA-APDU is an API that allows the application to communicate with a smart card (for example, the SIM card).
SATSA-PKI is used for generation of digital signatures and basic user credential management.
SATSA-CRYPTO is a subset of the J2SETM Cryptography Extension (JCE) API and provides basic support for encryption, decryption, computing digests, verifying signatures, and accessing public keys.