Basically I'm trying to develop a kind of secure storage for further applications.
This secure storage should be able to store keys and certificates, provided by other applications. I was looking for how to identify an application. First for storage purpose, second for giving results back to the good software (the one who added the data). My idea was to identify that client software with its certificate, but now, I'm not sure it's really a good idea. Thanks a lot for your help. ColletJb On 21 oct, 14:55, RichardC <[email protected]> wrote: > Yes I read: > > Signature[] PackageInfo.signatures > > and the documentaion for Signature does not really specify what it's > methods do. > > "Encode the Signature as ASCII text." is not very specific in saying > what information is included and how it is formatted. So even if one > of the encode functions did include the identity and public key of the > signer it could NOT be relied upon. > > Before we go further off topic could the OP give a simple example of > the security features he needs, I might be able to provide some help > but I think that starting from the package encryption details is > taking us off track. > > -- > RichardC > > On Oct 21, 1:34 pm, davemac <[email protected]> wrote: > > > > > What about getPackageManager().getPackageInfo("your.package.name", > > GET_SIGNATURES) ? > > > - dave > > > On Oct 21, 6:52 am, RichardC <[email protected]> wrote: > > > > I hope we have no chance at getting the private key. It should never > > > leave the developer's computer. > > > > I have had a look for access to the public key which must be in the > > > APK (so the the signature(s) can be checked) but I can't find any way > > > to access it. > > > > -- > > > RichardC > > > > On Oct 21, 11:21 am,ColletJb<[email protected]> wrote: > > > > > up ? > > > > > On 20 oct, 15:37,ColletJb<[email protected]> wrote: > > > > > > Hi everyone, > > > > > > I'm currently working on an application which need security features. > > > > > > My question is simple, if every application is signed by its > > > > > developper, how can I access application public key ? (and private :p) > > > > > > Thanks for your help ;) --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Android Developers" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [email protected] For more options, visit this group at http://groups.google.com/group/android-developers?hl=en -~----------~----~----~----~------~----~------~--~---
