<div class='os_post_top_link'><a href='http://msdn.microsoft.com/mobility/default.aspx?pull=/library/en-us/dnsmtphn2k3/html/Smartphone_security.asp' target='_blank'>http://msdn.microsoft.com/mobility/default.aspx?pull=/library/en-us/dnsmtphn2k3/html/Smartphone_security.asp</a><br /><br /></div>James Pratt has written a great MSDN article discussing the things that developer need to know about app security and code signing.<br /><br />"If you are a Smartphone developer with a knowledge of building Pocket PC or Smartphone applications and are also building Pocket PC and/or Smartphone installation (.cab) packages, this article should provide you with everything you need to know about the Smartphone Application Security model, the difference between privileged and unprivileged applications, how to determine if your application needs privileged trust, how to configure your development environment for Smartphone development, and how to sign your application through a code-signing vendor."