I'm publishing an open-source library on CodePlex, and want the dll files to have strong names so that they can be added to GAC. What's the best option for signing? Should I use SNK? If so, everyone have access to the key. I don't have a problem with everyone having access, but is it a good approach? Should I use PFX? If so, does it m...
Hi there. I have a program that is extendable by plugins using the Microsoft Extensibility Framework. But i dont want untrusted sources to give out plugins that may be insecure. So i want to sign the plugins (maybe with Visual Studio's built in signing) and check if the plugins are trustworthy at program start. I didn't find a way to ch...
Hi I am working on a e-banking iphone application. I am using WSS with XML-Signature to sign the requests to the customer's SOAP server. Since the iPhone device can not be trusted (due to jail-breaking), the customer requirement is to manually encrypt the RSA key pair (using AES128) before storing the keys into keychain. From what I ...
I'm trying to sign some data using SecKeyRawSign but I keep getting a -4 errSecUnimplemented. That seems strange since the documentation states that it is available in iPhone OS2.0 and later. Has anyone been able to use this function? If so, are there any tricks involved? ~Nate ...
If I want to sign and encrypt a message using an X509 certificate, is there any reason not to use the same certificate for encryption and signing? ...
Hi, I was wondering about the wizard of eclipse, what the difference was between the keystore password and that asked in the after screen? And what if i post both the same? Tnk's Valerio From Italy ...
Hi, I need to create post build event to perform the following: sn -i MyKey.pfx MyKeyContainerName tlbimp $(ConfigurationName)\MyCom.tlb /out:$(ConfigurationName)\NETMyCom.dll /keycontainer:MyKeyContainerName sn -d MyKeyContainerName When the Visual Studio executes the 1st statement it requires a password and waits until the user spec...
Gurus, I got the keys from RIM to sign my application, however, the signing tool won't sign the RRT, I'm succesfully signing the RCR but not the RRT so the application won't run on a device, I'm getting this error that speaks for it's self: I'm using Eclipse with the plugin 1.1. JRE 5.0.0. Any help would be appreciated, if you need mo...
Hi I recently published an application for Android in the Market. Now, I'd like to publish an update, but I'm having a long argument with my computer and keystore about this option. The version:code and the other thing they want you to set, are set. I don't want to change the numbers , because we'll loose about 30 hours of work tim...
Currently I am working on signing a 64-bit driver for a USB tool which is used to scan areas of the skin. My setup is like this: DTM Controller and DTM Studio are running on a Server machine (Windows Server 2003 R2 SP2) DTM Client running on a Client Machine (Windows 7 64-bit) I have managed to run tests on the client, using DTM Stu...
If I have an apk can I remove the current signing and some how resign it with a different .keystore file and still have the application install? Update: I managed to get it to work with Jorgesys' solution and where I messed up before was that I unzipped the .apk then rezipped it after removing the META-INF folder and changed the file ex...
Hello, I'm looking for some instructions/pointers on how to sign our J2ME midlet for use on the Vodafone UK network so the user is no longer continually prompted to allow access to the network whenever it attempts an HTTP/UDP network transaction. The application currently installs and runs OK but the user is repeatedly prompted to allow...
Hi, I am having the problem that adding a second signature to a .jar file causes trouble in combination with code that only has one of them. Background: We have an application that is signed with an expired certificate. It has a starter that can update itself by downloading new versions of .jar files and placing them in front of the e...
Which would be the simplest git workflow for signing some commits, in order to mark them as having passed a given review, or a set of given reviews? I suppose tagging them would create too many tags. Creating an intermediate repository with a person responsible for committing (effectively using author/committer duality) would be a bit o...
I'm trying to add the signing time attribute to a file that I am signing using SignedCMS. private byte[] signFile(byte[] fileContent, X509Certificate2 verificationCert) { ContentInfo contentInfo = new ContentInfo(fileContent); SignedCms signedCMS = new SignedCms(contentInfo); CmsSigner cmsSigner = new CmsSigner(SubjectIdentif...
Hi, I am trying to sign the jar, but I am getting this exception- [exec] jarsigner: Certificate chain not found for: pvktmp:e40b0b30-dcc9-4aef-8450-15c2437a4959. pvktmp:e40b0b30-dcc9-4aef-8450-15c2437a4959 must reference a valid KeyStore key entry containing a private key and corresponding public key certificate chain...
Hi All, I've got a problem to publish my Android Application. here's what i've done, so I have my application run on development environment (eclipse - testing using device), then i do right click on my project folder - android tools - export signed application package, then i create new key store and add my information there, then i...
Hi, Our embedded systems programmer has developed the shell of a virtual serial port driver for our mobile hardware, and I have been filling in the methods to get it to work. The driver does work as expected, it simulates a COM port for a USB device that is spewing out NMEA strings (GPS data). I type WM6 for short, but the OS is WM6.1 ...
We have several maven projects, which are built on the build server. In some cases we want to sign our deliverables. We use Maven Jarsigner Plugin to do that. We face the following questions: Where we should store the passwords for signing? What is a good strategy for signing maven projects? We don't want to put our keystore somewhere ...
I read that BlackBerry signing keys can be only installed on one PC. I'm compiling my Rhomobile Rhodes app on one PC. But the BlackBerry signing keys are installed on another PC. What I need to do in order to sign the app on another PC. PS: I've set bbsignpwd in rhobuild.yml. ...