Archived: This article is archived because it is not considered relevant for third-party developers creating commercial solutions today. If you think this article is still relevant, let us know by adding the template {{ReviewForRemovalFromArchive|user=~~~~|write your reason here}}.

Description

The MIDP Security Policy recommendation states that "Any Authority Certificates obtained after device manufacture MUST NOT be used for authentication of MIDlet suites." However, on S60 2nd Edition phones it is possible to install certificates that can be used to sign MIDlets. This behavior was corrected in S60 3rd Edition devices.

On a general level the process for this is following:
Create a CA test key pair in DER format using, for example, the OpenSSL tool.

Download and install the public key on your phone for example from a Web server (the correct MIME type for the certificate is "application/x-x509-ca-cert"). Configure the installed certificate to allow application installation.

After creating a Certificate Signing Request (CSR) for example with Carbide.j, use the private key to sign the MIDlets.

This is not a recommended way to sign MIDlets.