Thanks for the reply. Then for pre ics devices will it be better if such certificates stay on a webserver and be granted to be downloaded to the user after authenticating him? The certificate can then reside in the apps private file system and installed in the private keystore?
Thanks, Dav On Nov 26, 7:52 pm, Brian Carlstrom <[email protected]> wrote: > Starting in Android 4.0 IceCreamSandwich, an app can use > android.security.KeyChain to request a centrally installed client > certificate:http://developer.android.com/reference/android/security/KeyChain.htmlBefore > 4.0, the installed client certificates were only usable for VPN and WiFi > authentication, not apps. Of course, in any Android release you can use > the java.security.KeyStore API to read a PKCS#12 keystore from the file > system. however, if one app can read it from the file system, presumably > others can as well, not sure you want to trust a password on the PKCS#12 > file to protect it. > > -bri > > > > > > > > On Thu, Nov 24, 2011 at 4:12 PM, Dav <[email protected]> wrote: > > Is it possible to read a client certificate which is not bundled in > > the app ? > > Is it possible to read it from filesystem? > > > Customers of out app may use their own client certificates . Those > > certificates are distributed by their internal server administrator > > respectively for each user. > > > -- > > You received this message because you are subscribed to the Google Groups > > "Android Security Discussions" group. > > To post to this group, send email to > > [email protected]. > > To unsubscribe from this group, send email to > > [email protected]. > > For more options, visit this group at > >http://groups.google.com/group/android-security-discuss?hl=en. -- You received this message because you are subscribed to the Google Groups "Android Security Discussions" group. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/android-security-discuss?hl=en.
