The security model in Flash Lite is mostly similar to its corresponding Flash Player version.
Flash Lite 2.0 / 2.1 is compliant with the Macromedia Flash Player 7 Security white paper. For changes in Flash Player 7 in relation to earlier versions, see Security changes in Flash Player 7.
Flash Lite 3.0 is compliant with the Macromedia Flash Player 8 Security white paper. For changes in Flash Player 8 in relation to Flash Player 7, see Security changes in Flash Player 8.
Flash Lite 3.1 is compliant with the Adobe Flash Player 9 Security white paper.
For information about Digital Rights Management in Flash Lite, see section OMA DRM.
By default, Flash Lite applications do not have access outside their
own domain (the domain of the mobile device they are run in). So if your Flash
Lite application tries to access data from an external source, the server
hosting the external files needs to have a permission file called crossdomain.xml in
its root that defines the allowed connections to that server.
An example crossdomain.xml file can look like this:
<?xml version="1.0"?>
<cross-domain-policy>
<allow-access-from domain="*.nokia.com" to-ports="5656" />
</cross-domain-policy>
For more examples of crossdomain.xml files in use,
see Web sites such as YouTube and Amazon.com.
For more information about cross-domain networking, see External data not accessible outside a Flash movie's domain at the Adobe Web site.