Symbian version of the software needs to be signed, and the installation program on the mobile phone will only perform the correct installation process after verifying the correct signature. In order to distinguish the different abilities that developers need to use and relatively reduce the difficulty of developers, Symbian has different signing strategies, which can be basically divided into two categories:

A) Self-signed certificate: It can be generated without any cost to the developer and can be installed on any mobile phone.

This kind of software is also called self-signed software.

The limitation of this kind of software is that it can only use five basic abilities. The uid of the software must start with 0xE or 0xA, such as 0xE 1234567 or 0xA 1234567. The limitation here is that the software starting with 0xE is only used for testing/verification purposes and cannot be used for distribution. Self-signed software must be distributed using UIDs starting with 0xA. (uid application is free).

Note: Since all the projects automatically created by symbian's IDE are within the scope of 0xE, the self-signed software submitted by the developer must be required to change the uid to 0xA.

For self-signed software, symbian's sdk comes with a self-signed tool, which can generate a valid signing certificate of 1 year. After 1 year, users will not be able to install, and the time from mobile phone to software generation must be manually adjusted. For example, the time for users to generate self-signed software is 200908 18. Then on 20 1008 17, the user who changed the software will have problems when downloading and installing, prompting that "the certificate has expired". Solving this problem is simple. For the self-signed certificate, the installation program on the mobile phone is not limited to nokia/symbian root id, so you can also use openssl tools to generate symbian usable signatures. This period can be arbitrary, so we can generate an effective 65438+.

If you want to create a self-signed certificate that is invalid within 1 year, or you want to provide additional information about yourself, you can use the tool Open SSL to create a certificate instead of using the standard tool included with SDK: MakeKeys.

Based on the suggestions given here, the following command demonstrates how to create a self-signed key/certificate pair with a validity period of 10 years.

OpenSSL gen RSA 1024 & gt； none.key

OpenSSL req-new-x509-nodes-sha 1-days 3650-key none . key & gt； No. cer

After entering the second command, you will be prompted to enter your own information, which will be embedded in the certificate. This process only needs to be performed once, and then the generated certificate will be saved for future use with CreateSIS or SignSIS.

I tried and this error occurred: I can't load the configuration information from /usr/local/SSL/OpenSSL.cnf to check the network, and copy the OpenSSL.conf next to it to C:\usr\local\ssl\openssl.cnf before executing.

B) Official signature, you must buy publih id from symbian and test the signature online or in the laboratory. The validity period is usually ten years.

Will not lead to expiration problems.