I want to create a certificate, make it available on a website for download, download it onto a 7650, and then have it marked as trusted by the Installer.
I know I need to have the mime-type configured as application/vnd.wap.wtls-ca-certificate. I also know the certificate needs to be in a binary format, not PEM. Looking at the Nokia OK certificate that is already on the phone, it seems that it needs to be an X509 cert with an RSA key. I believe that I use
openssl genrsa -out my.key 1024
to generate the key. The Symbian SDK tools only support DSA keys so they're no use.
How do I generate the certificate?
Can I generate a certificate which is implicitly trusted by the Application Manager, or do I have to go to the trust settings in Settings-Security-Certificate Management and manually do that after the certificate has been downloaded and installed?
I do *not* want a CSR. I'm aware that Nokia OK have a monopoly on signed certificates trusted by the Application Manager. I simply want a self-signed certificate that can be installed on the phone.