[android-developers] Re: Self-signed app on Market
Then what's the point of signing? To make sure another app cannot use the same package name and thus overwrite my app? Thanks On Tue, Feb 10, 2009 at 5:38 PM, Dianne Hackborn hack...@android.comwrote: Android doesn't use CAs at all, period. It makes no difference whether you self-sign or use a CA, the system and user will never know the difference. On Tue, Feb 10, 2009 at 4:53 PM, Mattaku Betsujin mattaku.betsu...@gmail.com wrote: Hi, If I go cheap and don't pay the $xx or so for a real VerifySign certificate, and just use a self-signed certificate to sign my app, will it appear as a second-class citizen on the Android Market? Specially, will the user get a prompt like this app is signed by a possibly untrustyworthy scheming bastard, do you still want to risk your life install it? If not now, will such a policy be enforced in the future? Thanks - Mattaku -- Dianne Hackborn Android framework engineer hack...@android.com Note: please don't send private questions to me, as I don't have time to provide private support. All such questions should be posted on public forums, where I and others can see and answer them. --~--~-~--~~~---~--~~ You received this message because you are subscribed to the Google Groups Android Developers group. To post to this group, send email to android-developers@googlegroups.com To unsubscribe from this group, send email to android-developers-unsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/android-developers?hl=en -~--~~~~--~~--~--~---
[android-developers] Re: Self-signed app on Market
It allows your apps to work closely together (share files, share processes, share permissions) while still being protected from other apps. It also prevents your apps from being replaced by someone pretending that they're you (and thus accessing all of your apps' data). JBQ On Thu, Feb 12, 2009 at 11:02 AM, Mattaku Betsujin mattaku.betsu...@gmail.com wrote: Then what's the point of signing? To make sure another app cannot use the same package name and thus overwrite my app? Thanks On Tue, Feb 10, 2009 at 5:38 PM, Dianne Hackborn hack...@android.com wrote: Android doesn't use CAs at all, period. It makes no difference whether you self-sign or use a CA, the system and user will never know the difference. On Tue, Feb 10, 2009 at 4:53 PM, Mattaku Betsujin mattaku.betsu...@gmail.com wrote: Hi, If I go cheap and don't pay the $xx or so for a real VerifySign certificate, and just use a self-signed certificate to sign my app, will it appear as a second-class citizen on the Android Market? Specially, will the user get a prompt like this app is signed by a possibly untrustyworthy scheming bastard, do you still want to risk your life install it? If not now, will such a policy be enforced in the future? Thanks - Mattaku -- Dianne Hackborn Android framework engineer hack...@android.com Note: please don't send private questions to me, as I don't have time to provide private support. All such questions should be posted on public forums, where I and others can see and answer them. -- Jean-Baptiste M. JBQ Queru Android Engineer, Google. --~--~-~--~~~---~--~~ You received this message because you are subscribed to the Google Groups Android Developers group. To post to this group, send email to android-developers@googlegroups.com To unsubscribe from this group, send email to android-developers-unsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/android-developers?hl=en -~--~~~~--~~--~--~---
[android-developers] Re: Self-signed app on Market
Android doesn't use CAs at all, period. It makes no difference whether you self-sign or use a CA, the system and user will never know the difference. On Tue, Feb 10, 2009 at 4:53 PM, Mattaku Betsujin mattaku.betsu...@gmail.com wrote: Hi, If I go cheap and don't pay the $xx or so for a real VerifySign certificate, and just use a self-signed certificate to sign my app, will it appear as a second-class citizen on the Android Market? Specially, will the user get a prompt like this app is signed by a possibly untrustyworthy scheming bastard, do you still want to risk your life install it? If not now, will such a policy be enforced in the future? Thanks - Mattaku -- Dianne Hackborn Android framework engineer hack...@android.com Note: please don't send private questions to me, as I don't have time to provide private support. All such questions should be posted on public forums, where I and others can see and answer them. --~--~-~--~~~---~--~~ You received this message because you are subscribed to the Google Groups Android Developers group. To post to this group, send email to android-developers@googlegroups.com To unsubscribe from this group, send email to android-developers-unsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/android-developers?hl=en -~--~~~~--~~--~--~---