I need to save some generated RSA keys across device reboots. I presume this needs to be done with the PersistableRIMKeyStore class, but I have been unable to find any code samples explaining how to do this. Particular points I don't understand are the requirement that the simplest constructor for this class requires a CodeSigningKey object and a PersistableRIMKeyStoreFactory object.
I presume the CodeSigningKey should be something I personally create to ensure only my application can access this keystore. Are instructions available for how to generate this key?
As for the factory, i see this is an interface which requires me to implement a method createInstance() - but the documentation is fairly unclear on what this actually needs to do, apart from on a very abstract level.
If anyone could provide guidance or code samples for how to do this that would be much appreciated. The idea crossed my mind of just using the normal persistentStore in conjunction with ControlledAccess, but presumably the existence of the KeyStore classes is because the normal persistent store is not a secure enough place to store keys?
Edit: after some searching I found this: http://www.blackberry.com/developers/docs/4.3.0api/net/rim/device/api/crypto/doc-files/Tutorial_KeyStore.html but it seems to contain a number of mistakes (what looks like syntactically invalid Java in places, and also says to use a get() method which doesn't appear to exist) and doesn't make things much clearer. I've also found the TrustedKeyStore class, I'm not sure if I want to use that as opposed to PersistableRIMKeyStore for my purposes (basically I'm generating a large RSA key, generating it on each run of the program will take far too long, so I want to generate it on first run and then store it in NV storage, loading it out on each launch of the application). The fact that I'm generating the keys locally means I obviously consider them trusted..
Message Edited by malcolm on 09-03-2008 10:27 AM
