|
1 <?xml version="1.0" encoding="utf-8"?> |
|
2 <!-- Copyright (c) 2007-2010 Nokia Corporation and/or its subsidiary(-ies) All rights reserved. --> |
|
3 <!-- This component and the accompanying materials are made available under the terms of the License |
|
4 "Eclipse Public License v1.0" which accompanies this distribution, |
|
5 and is available at the URL "http://www.eclipse.org/legal/epl-v10.html". --> |
|
6 <!-- Initial Contributors: |
|
7 Nokia Corporation - initial contribution. |
|
8 Contributors: |
|
9 --> |
|
10 <!DOCTYPE task |
|
11 PUBLIC "-//OASIS//DTD DITA Task//EN" "task.dtd"> |
|
12 <task id="GUID-55A6DA94-FAE6-442D-BBA8-82F92D4C63F2" xml:lang="en"><title>Creating |
|
13 a Private Key and Self Signed Certificate</title><prolog><metadata><keywords/></metadata></prolog><taskbody> |
|
14 <steps-unordered> |
|
15 <step id="GUID-548F2317-948F-491D-BED4-1D83D6DF0520"><cmd>Run MakeKeys at |
|
16 the command prompt using the <codeph>-cert</codeph> option. </cmd> |
|
17 <info><p>The following is the syntax: </p><codeblock xml:space="preserve">> makekeys -cert [-v] [-expdays <cert-expiry-in-days>] [-password <password>] [-len <key-length>] -dname <distinguished-name-string> <private-key-file> <public-key-cert></codeblock><note type="important"> Specify a name for the output private key file with |
|
18 .key extension and output self-signed certificate file with .cer extension. |
|
19 </note></info> |
|
20 <stepxmp><p>For example, </p><codeblock xml:space="preserve">> makekeys -cert -expdays 3650 -password yourpassword -len 2048 -dname "CN=Symbian Foundation Developer O=Symbian Foundation C=GB" HelloWorld.key HelloWorld.cer |
|
21 </codeblock><p>Here, </p><ul> |
|
22 <li><p><codeph>HelloWorld.key</codeph> is the name of the output private key |
|
23 file that must be kept secret </p></li> |
|
24 <li><p><codeph>HelloWorld.cer</codeph> is the name of the output self-signed |
|
25 public key certificate that can be used to verify the digital signature. </p></li> |
|
26 </ul></stepxmp> |
|
27 <info><p>See<xref href="GUID-557BF1DA-B6E8-521B-89F0-15C84E3BCB1A.dita">MakeKeys |
|
28 Reference</xref> for more information on the options and arguments that can |
|
29 be provided with the MakeKeys tool. </p></info> |
|
30 </step> |
|
31 </steps-unordered> |
|
32 <postreq><p>The self-signed certificate can be included in installation files |
|
33 and used to verify the digital signature with a matching private key. However, |
|
34 secure installation requires that the certificate containing the public key |
|
35 be digitally signed by a trusted third party. Therefore, a certificate |
|
36 request must be sent to the Certification Authority (CA) for signing. See <xref href="GUID-1747534D-063A-45B0-8636-E7767F984BB0.dita">Generating a Certificate |
|
37 Request</xref> for details about creating a certificate request.</p></postreq> |
|
38 </taskbody></task> |