This document defines a standard that enables the control of sensitive APIs in a Mobile Device Operating system based on access rules stored in a Secure Element. An access rule may explicitly allow the usage of an API for specific mobile application which is per default not accessible due to security reasons. This document is derived from the GP SEAC specification and defines an ARA-D and ARF-D which are similar to the ARA and ARF definitions in GP SEAC.