diff -r 023eef975703 -r abc41079b313 javacommons/security/src/midpauthenticationmoduleimpl.cpp
--- a/javacommons/security/src/midpauthenticationmoduleimpl.cpp	Fri Jul 09 16:35:45 2010 +0300
+++ b/javacommons/security/src/midpauthenticationmoduleimpl.cpp	Fri Jul 23 12:27:20 2010 +0300
@@ -472,7 +472,21 @@
         if (X509_verify_cert(x509_ctx) != 1)
         {
             ret_code = getErrCode(X509_STORE_CTX_get_error(x509_ctx));
-            break;
+            // If the secure time of the device has not yet been set
+            // (can happen some times during the first device boot),
+            // allow installing with not yet valid certificates
+            if (KCertNotYetValidFailure == ret_code)
+            {
+                if (!TelUtils::isSecureTimeSet())
+                {
+                    ret_code = KCertAndSignatureOk;
+                }
+            }
+
+            if (KCertAndSignatureOk != ret_code)
+            {
+                break;
+            }
         }
         // verify the extended key usage: it must point to id-kp-codeSigning (RFC3280 code signing)
         // or 1.3.6.1.4.1.94.1.49.1.2.2.3 (Nokia Java Code Signing Extension)