Categories: Known Issue | Symbian C++ | S60 3rd Edition | S60 3rd Edition, Feature Pack 1 | Signing and Certification
This page was last modified 10:52, 8 February 2008.
KIS000816 - Self-signed certificates expire after one year
From Forum Nokia Wiki
| ID | KIS000816 | Creation date | February 8, 2008 |
| Platform | S60 3rd Edition S60 3rd Edition, Feature Pack 1 | Devices | |
| Category | Symbian C++ | Subcategory | SDK & Tools, Signing and Certification |
Description
When creating self-signed certificates, the makekeys utility sets the expiry period to one year by default. After one year, SIS packages signed with this certificate can no longer be installed.
There is an updated version of the makekeys utility that allows changing the expiry period. However, this version is only part of S60 SDKs since 3rd Edition, Feature Pack 2.
Solution
When creating the private key and certificate used for self-signing, use a version of makekeys that recognizes the expdays command line parameter for setting the expiry period in days.
For example:
makekeys -cert -expdays 7300 -password secretpassword -len 2048 -dname
"CN=Test User OU=Development OR=Company CO=FI EM=test@company.com"
mykey.key mycert.cer
S60 3rd Edition, Feature Pack 2 SDK already has this version of makekeys.
For previous SDK versions, this version can be downloaded from the Symbian Web site.
| Related Discussions | ||||
| Thread | Thread Starter | Forum | Replies | Last Post |
| j2me https negotiation - Client Certificate | Nikolaos | Mobile Java Networking & Messaging & Security | 9 | 2008-01-21 18:20 |
| PKI certificates on Series 60 / 80 | josbrakband | General Symbian C++ | 0 | 2005-10-07 09:08 |
| Emulator - Required Application access not granted | mshepard | Symbian Tools & SDKs | 5 | 2007-10-04 03:28 |
| How can I get MultimediaDD capability? | goodtaste | Symbian Signing, Certification and Security | 5 | 2007-11-24 13:53 |
| digital certificates | ralphph | General Browsing | 0 | 2003-05-02 15:04 |
