Why is the Signature class opaque (where a Signature object is returned from PackageManager:: getPackageInfo(<packageName>, PackageManager.GET_SIGNATURES).signatures)? Based on several articles (e.g. http://thomascannon.net/misc/android_apk_certificate/), it is really an X.509 certificate. Might the contents change in future versions?
Joe -- You received this message because you are subscribed to the Google Groups "Android Security Discussions" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. Visit this group at http://groups.google.com/group/android-security-discuss?hl=en. For more options, visit https://groups.google.com/groups/opt_out.
