[A83] Re: Free App signing key


[Prev][Next][Index][Thread]

[A83] Re: Free App signing key




>> >> >As far as I figured out:
>> >> >
>> >> >If an application is not signed, it will not work.
>> >> >
>> >> >Signing is taking an MD5 checksum from the application, and
encrypting
>> it
>> >> with
>> >> >a private key, in sucha a way, you need one key to encrypt and
another
>> to
>> >> >decrypt (RSA. [The decryption key is a derivate from the encryption
in
>> >> >signing, in real encryption, it's the other way around])
>> >> >
>> >> >The encrypted checksum (signature) is then pasted in after the
program
>> >> file,
>> >> >and your app is signed.
>> >> >
>> >> >Hope it was clear.
>> >>
>> >> Yes, very much!
>> >>
>> >> But is this right: TI made you need a checksum and let you pay for it,
>> but
>> >> now makes it free?
>> >
>> >No, correct statement would be:
>> >Ti made you to have them encrypt your checksum, for a price, but now
>> they've
>> >released their private key, so you can do it yourself.
>>
>> So, before now, you had to use an un-encrypted-checksum?
>
>Well, the signing process involves signing an MD5 checksum.
>While the MD5 checksum has value if it is encrypted, it has no value
>for applications and programs on itself.
>(Everyone can make such a checksum BTW...)
>
>So: before this you had to pay TI to sign your programs, but now it's free
>
>Hope this was clear now :-)

Yes, totally.

>--Peter Martijn
>> >
>> >>
>> >>
>> >>
>> >>
>> >
>> >
>> >
>>
>>
>>
>
>
>