Is the Key Pair Generated During Signing Dependent on the MIDlet?

**tempdisj** · 2007-02-09, 08:38

This may be an obvious question, but I have not been able to find a direct answer to it, and I am not a security expert --

During the process of signing a MIDlet, is the key pair generated in the first step dependent on the actual MIDlet? Could the key generation be performed without a completed MIDlet? I assume the key generation is not dependent on the MIDlet, as the keytool command does not require .jar/.jad filenames as input arguments.

Assuming this is true, then can a code signing certificate be used to sign multiple independent MIDlets?

Thanks for the help

**petrib** · 2007-02-09, 08:45

A code signing certificate has no dependencies on the file(s) to be signed, and can be used to sign as many files as you wish.

**tempdisj** · 2007-02-09, 09:26

Thanks for the quick response. So I assume that means it is very hard to incorrectly create the CSR file that is sent to the CA (if you follow the steps in the Signed MIDlet Developers Guide)?

Discussion Board

Thread: Is the Key Pair Generated During Signing Dependent on the MIDlet?

Thread Tools

Search Thread

Rate This Thread

Display

Similar Threads

MIDlet signing with Thawte cert for 6600

Pushregistry, Security Alert after signing the midlet?

技术文档：MIDP 2.0安全机制与 MIDlet 数字签名

Code Signing Midlet for nokia 9300

Midlet Signing Questions

Posting Permissions