05-06-2013 03:32 PM
Newbie here. After several months of internal testing of our app we are ready to put in the store.Managed to get our Vendor ID setup. Now we are going through the New Release Submission wizard. We are very confused about the 'HTTPS' verbiage throughout the EXPORT screen. Our question is regarding the following two text blocks on the screen:
1. Please indicate all types of encryption and/or information security functions directly or indirectly performed by your Product: This includes any encryption within the Product on the BlackBerry (including HTTPS) AND/OR any encrypted connection the Product makes to an external system.
2. Does your Product call cryptographic libraries from the BlackBerry Device Software or BlackBerry PlayBook Operating System in order to perform any cryptographic functionality or to enable any protocol that uses cryptography (e.g. HTTPS, SSL)?
For Item 1, does this mean that if we communicate with a 3rd party REST service with a URL that starts with 'https' then our product is considered to be encrypted?
For item 2, we do NOT call any crypto libraries, Blackberry or otherwise, to implement any encryption in the app therefore we don't believe this text is applicable to us.Are we interpreting this correctly?
We do use the standard net.rim...api.http routines to send/receive our web requests, most of which will have the 'https' prefix but we are not actively using code to implement this outside of the rim library's standard calls.
This is very confusing. Can someone point us to the proper place for correct interpretation?
Thanks in advance!