Using PackageInfo.signatures to get public ke

by Yuliy Pisetsky » Fri, 16 Jul 2010 06:35:17 GMT

Sponsored Links

I was wondering if there's any more detail that can be extracted from
PackageInfo.signatures. For instance, can we extract the public key
that was used to sign the package? (and trust that the OS had already
verified that the APK was indeed signed with the corresponding private
key). What I'd want to do is to be able to have a list of trusted
partners that are allowed to call my app, with those partners all
having separate keys. I'd have a database of partners and their public
keys available somehow (embedded or on a web site), and would be able
to make security decisions based on who the caller is (while reducing
the risk of the user making an incorrect decision and granting an app
which shouldn't have that access the permission to call my app.


Other Threads

1. How to debug unexpected exceptions (source not found)

Hi all,
      I am pretty new to Android, the thing that bugs me the most
about the IDE is that I am not able to get any information about an
unexpected exception when it gets thrown, I can put a try catch block
around identified code that generates it, but in many cases it takes
time to find the line of code that generates the exception. is there
any other way I can get the exception information?  in JDT when an
unexpected exception is thrown the call stack displays the exception
class name. but in ADT this doesn't work.
     Thanks in advance!



2. "System.out.println(...)" statements within the onCreate

Hi All,

Am a newbie...

could anyone explain why my "System.out.println(...)" statements
within the onCreate of an activity are not showing up in my console ?

pointers would be appreciated...


ps - using adt with eclipse for development


3. comparing a string array with a string

4. DOM, SAX or XMLPullParser ? Any suggestions ?

5. Cannot play videos in emulator, can only hear the sound, no image

6. Agreement for Android Market

7. Web Inspector