This step-by-step guide describes how to sign sis packages with SISContents. In order to sign a package you need certificate…
This step-by-step guide describes how to sign sis packages with SISContents.
In order to sign a package you need certificate, corresponding private key and password to decode the key if it is encrypted. There are two different certificate types available for end users: self-signed certificate and Symbian developer certificate. The choice what certificate to use depends on package UID and capabilities application being signed needs. By default SISContents has a self-signed certificate and private key, delivered with the application, so you don’t need to make your own one. But in case developer certificate is needed and you don’t have it, you can submit a request on OPDA forums and other portals capable to make them as holders of Publisher Id (they are issued by Symbian anyway).
The features and limits of self-signed certificate are:
The features and limits of developer certificate are:
To sign sis package with SIScontents you should do the following:
1. Run SISContents and open sis package you would like to sign (menu File->Open file)
2. Check the package UID. If it has value from protected range, developer certificate must be used for signing, regardless of capabilities. If the value is from unprotected range, the type of certificate depends on capabilities the executable files in the package require.
3. Check the capabilities of executable files in the package. For this switch to “Contents” tab and look at all files in the list. If one of the files require system capabilities (see features and limits of developer certificate), then developer certificate must be used. In case some files require AllFiles, DRM and TCB capabilities, the package cannot be signed, because neither self-signed nor developer certificate can grant them. If the package does not have any executable files, does not require any capabilities or require user grantable ones (see features and limits of self-signed certificate) and it has UID from unprotected range, self-signed certificate can be used.
4. If a package has several components (embedded package), UID and capabilities must be checked for every component. You can see all components at the list box in the top right part of the main windows of SISContents (right of the name of a package currently open).
5. In the menu press Tools->Sign package. There are two tabs in the signing dialog window: “Package” and “Key pairs”. On the package tab you can see the components of a package, the amount of signatures each component has, list box with the signing profiles and buttons “Add signature” and “Delete signature”. First you may need to add your own developer certificate to the list of signing profiles. To do this switch to “Key pairs” tab and specify the path to certificate file, its private key file, type the password for deciphering private key (if it is encrypted) and the name of the profile (in order you can distinguish added profiles). After that switch back to “Package” tab and depending on what certificate you need to sign the current package, choose the profile for signing and click “Add signature” button. If a package has several components they must be signed individually (note: the type of certificate should be determined for each component of the package according to the package UID and capabilities of that component). You must as well follow the rule: the child components are signed before their parents. After you click “Add signature” the newly added signature will appear in the list below the list of components.
6. Close the signing dialog and in the menu “File” select “Save as” to save your signed package.
For more information about Symbian SIS Packages. Click Here.
SISContents is a tool that allows you to unpack, edit and sign Symbian 9 SIS packages (Nokia S60 3rd, 5th Edition and Sony Ericsson UIQ 3.x platforms are supported). It helps you to inspect the files contained in SIS package, to see certificates against which it was signed as well as to view the PKG script that describes the on-device installation process. You can also edit the contents of packages and sign them after that.
Main features of SISContents:
– read the contents and show information on SIS packages;
– unpack files from SIS packages;
– extract embedded components of packages as sis files (including certificates and signatures);
– view and save installation PKG script;
– sign packages, show information on certificates (validity period, issuer, subject, etc.), and delete them from package;
– edit package: modification of name, vendor, version, type of installation, supported platforms (devices), software dependencies, options is available. You can also add, replace and delete files/components containing in a package and change capabilities, UID3, SID of executables (i.e. exe, dll, ldd, etc.);
– read the contents and unpack files from N-Gage packages;
– extract and edit contents of mif files embedded in sis packages;
– view, extract images from and edit multibitmap (mbm) files embedded in sis packages;
– modify themes for S60 platform.
Compatibility: Windows XP/2003 Server/Vista/2008 Server/Windows 7
SISContents is freeware
For more information about Symbian SIS Packages. Click here.
Subscribe to our mailing list and get interesting stuff and updates to your email inbox.
Thank you for subscribing.
Something went wrong.
we respect your privacy and take protecting it seriously