Digital Signing on Brew MP
By design, Brew MP requires that all dynamic code (applications, extensions, or modules for which there is no static hash in the boot image) be authorized thorough digital signing in order to execute. This requirement is the principal control and protection from malware attacks for mobile devices and networks. It gives device manufacturers (and mobile operators) control over what runs on their devices through explicit control over what signing authorities are trusted by the device.
Manufacturers ship Brew MP devices with embedded root certificates and those devices will only execute code that is explicitly trusted by one of these roots. There must be a process in place for determining what code is trusted to run on a device and a mechanism for digitally signing the code determined to be trusted.This service is run by a signing authority.