Setting up signing

After you have configured the Security Managers and Signing Providers, you can set up signing for MTJ applications. The signing process in MTJ includes the following:

• Managing of key stores
  This includes the creation of new key stores, the opening of key stores and the password management for the key stores.
• Managing of key pairs
  This includes the creation of new key pairs and deleting of existing keys.
• Managing of certificates
  This includes the generation of certificate request and the importing of certificates and certificate responses.

MTJ uses a secure algorithm-based key pairing system, where the user creates key pairs using MTJ. These key pairs are used together with a public certificate in order to sign the applications.

In MTJ, you can automatically create key pairs to use in signing. The keys are stored in a password-protected key store. To sign an application, you need to have the public certificate stored in your computer and imported into MTJ.

Note: The MTJ application does not send the Certificate Signing Requests (CSRs) to a Certificate Authority (CA). The Security Manager only creates the CSR, which you can then send to a CA. The CA provides you with a signed RSA X.509v3 certificate and a signed certificate response.

Mobile Tools for the Java Platform
Providers

Managing security

Preferences