FIT-PI-01 — General platform interaction requirements
Minimum permissions. Input validation/sanitization. No data export via custom URL schemes unless justified. Secure browser components (no JavaScript by default, HTTPS only). Block vulnerable native methods. No local resource access from browser components. Safe object deserialization. Screen overlay protection. Third-party keyboard prevention for sensitive input. No sensitive data in notifications. Mutual auth for proximity presentations.
| Property | Value |
|---|---|
| Section | 5.6.1 General Requirements for Platform Interaction |
| Owner | platform |
Mapped Controls
| Control | Title |
|---|---|
| SID-HARD-02 | Input Validation and Injection Prevention |
| SID-HARD-08 | Sensitive Data UI Protection |
| SID-HARD-05 | Browser Security Controls |
Source: Nordic EUDIW Certification System – Wallet Instance FitCEM PP Appendix