[guardian-dev] new Android signing key
Hans-Christoph Steiner
hans at guardianproject.info
Tue May 27 23:06:06 EDT 2014
On 05/23/2014 05:16 AM, Michael Rogers wrote:
> On 14/05/14 20:20, Hans-Christoph Steiner wrote:
>> We finally have a new signing key for our official Android
>> releases. We had to make a new one because the current one is
>> using 1024-bit RSA, like the large majority of Android signing
>> keys. RSA 1024-bit is considering deprecated, so we are now
>> signing all new apps with our new 4096-bit signing key.
>
> What's the earliest version of Android that supports 4096-bit keys?
> I'm going to generate a new signing key for Briar soon and I'd like to
> continue supporting Android 2.1 (APK version 7).
We believe that it'll work on 2.1 or older. We also support old releases.
pd0x looked into it, if I remember correctly. Support for new algorithms like
ECDSA, SHA-2, etc. are not supported very far back, I think minimum 4.3.
.hc
>> For more info:
>> https://dev.guardianproject.info/projects/psst/wiki/CleanRoom
>
> Exciting project!
>
> Cheers,
> Michael
>
>
--
PGP fingerprint: 5E61 C878 0F86 295C E17D 8677 9F0F E587 374B BE81
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 969 bytes
Desc: OpenPGP digital signature
URL: <http://lists.mayfirst.org/pipermail/guardian-dev/attachments/20140527/84d872a7/attachment.sig>
More information about the Guardian-dev
mailing list