This may be an obvious question, but I have not been able to find a direct answer to it, and I am not a security expert --
During the process of signing a MIDlet, is the key pair generated in the first step dependent on the actual MIDlet? Could the key generation be performed without a completed MIDlet? I assume the key generation is not dependent on the MIDlet, as the keytool command does not require .jar/.jad filenames as input arguments.
Assuming this is true, then can a code signing certificate be used to sign multiple independent MIDlets?
Thanks for the help