×
Namespaces

Variants
Actions
(Difference between revisions)

Java ME signing for dummies

From Nokia Developer Wiki
Jump to: navigation, search
hartti (Talk | contribs)
m
ilarimikkonen_work (Talk | contribs)
m (Ilarimikkonen work -)
 
(6 intermediate revisions by 3 users not shown)
Line 1: Line 1:
[[Category:Java]][[Category:Java ME]][[Category:How To]][[Category:Signing and Certification]][[Category:Level-Basic]]
+
[[Category:Signing and Certification on Java ME]][[Category:How To]]
 +
{{ArticleMetaData
 +
|sourcecode= <!-- Link to example source code e.g. [[Media:The Code Example ZIP.zip]] -->
 +
|installfile= <!-- Link to installation file (e.g. [[Media:The Installation File.sis]]) -->
 +
|devices= <!-- Devices tested against - e.g. ''devices=Nokia 6131 NFC, Nokia C7-00'') -->
 +
|sdk= <!-- SDK(s) built and tested against (e.g. [http://linktosdkdownload/ Nokia Qt SDK 1.1]) -->
 +
|dependencies= <!-- Any other/external dependencies e.g.: Google Maps Api v1.0 -->
 +
|signing=<!-- Signing requirements - empty or one of: Self-Signed, DevCert, Manufacturer -->
 +
|capabilities=<!-- Capabilities required by the article/code example (e.g. Location, NetworkServices. -->
 +
|language=<!-- Language category code for non-English topics - e.g. Lang-Chinese -->
 +
|review-by=<!-- After re-review: [[User:username]] -->
 +
|review-timestamp=<!-- After re-review: YYYYMMDD -->
 +
|update-by=<!-- After significant update: [[User:username]]-->
 +
|update-timestamp=<!-- After significant update: YYYYMMDD -->
 +
|creationdate=20080708
 +
|author=[[User:Hartti]]
 +
}}
  
 
So your MIDlet causes too many confirmation dialogs? Someone suggested signing for you? You are in the right place....
 
So your MIDlet causes too many confirmation dialogs? Someone suggested signing for you? You are in the right place....
Line 18: Line 34:
  
 
You made '''changes to your MIDlet after signing'''? Seriously, no problem. Just sign the MIDlet again. (Of course if you got the signature from Java Verified after passing the tests, you need to go through the testing again and pay for the additional testing round.)
 
You made '''changes to your MIDlet after signing'''? Seriously, no problem. Just sign the MIDlet again. (Of course if you got the signature from Java Verified after passing the tests, you need to go through the testing again and pay for the additional testing round.)
 +
 +
If you are planning on '''submitting your application to Nokia Store''', you can submit the application without signing. Nokia Store will sign Java applications for free. [http://developer.nokia.com/Distribute/Packaging_and_signing.xhtml#article0 More information on submitting your app to the Nokia Store. ]

Latest revision as of 11:26, 8 October 2013

Article Metadata
Article
Created: hartti (08 Jul 2008)
Last edited: ilarimikkonen_work (08 Oct 2013)

So your MIDlet causes too many confirmation dialogs? Someone suggested signing for you? You are in the right place....

Want a theoretic overview of Java ME security policy? No? Then read on for more down-to-earth story.

What certificates to use? Mostly the answer is VeriSign, Thawte, or Java Verified. (but note that they cost money, and that Java Verified is in fact a certification and testing program). Note also that these certificates are widely available on various devices, but they are not available on all devices (device-level, regional, and operator-specific differences are many).

Are there any differences between Java Verified MIDlets and MIDlets signed with Verisign/Thawte? Even though those MIDlets are signed against different root certificate, they are placed in the same security domain, called trusted 3rd party domain (so the API access rights are the same between these MIDlets). Note also that sometimes this protection domain is also called identified 3rd party domain.

Yes, when you buy a certificate (usually for a certain duration of time - 1 or 2 years) you can use that certificate for signing for the duration of the certificate. You can install MIDlets on the phone even after that period, granted that the corresponding root certificate is still valid - which they should be until sometime in 2020...

What are the steps for signing? Check these step-by-step instructions to sign with a VeriSign certificate. After signing the JAD file should be a little fatter (with RSA-SHA and Certificate chain attributes) whereas there are no changes for the JAR.

No, you cannot install an additional certificate for MIDlet signing on your phone. It does not matter if you created the certificate yourself or if got some root certificate from a trusted CA. (ok, ok, there is a bug on S60 2nd Edition devices which makes this possible...) And please, direct your complaints to MIDP specification group.

What? You deleted a code signing certificate from your phone? No way to revert that. Sorry. See above.

You made changes to your MIDlet after signing? Seriously, no problem. Just sign the MIDlet again. (Of course if you got the signature from Java Verified after passing the tests, you need to go through the testing again and pay for the additional testing round.)

If you are planning on submitting your application to Nokia Store, you can submit the application without signing. Nokia Store will sign Java applications for free. More information on submitting your app to the Nokia Store.

This page was last modified on 8 October 2013, at 11:26.
177 page views in the last 30 days.
×