[S60 2nd] online check of certificate alway fails

Hi Manisse

A Certificates revocation list (CRL) was implemented in v7.0s or 8, but was
never usedby licensees and was removed in v9. So if you've found this list
on the device then there is a good chance that whatever it contains is
garbage.

The actual check is done via OCSP, online, at the point of installation.

> How it comes than checking online certificate always fails ?
The obvious reason is that the certificate used to sign them has been
revoked. Does the installation fail for both SIS files?

Regards
H

"Manisse" <[email protected]> wrote in message
news:kQ%[email protected]...
> Hello,
>
> i've an application with an uid of 0x2000000A for an S60 2nd3 application.
> The application has been successfully signed with one of the test house
> mentionned on symbiansigned.
> Later, the application has been sold to a mobile network operator. I
> upgraded some things inside and delivered it to the operator who signed it
> itself.
>
> Both version works fine when you install them.
> However, when we activate 'check certificate online', the check fails with
a
> 'revoked certificate' answer.
> I've tracked the revoked certificates listing and found it is al:most
empty
> and none of the applications is listed.
> How it comes than checking online certificate always fails ?
>
>

The installation fail for both SIS files.

I don't think the certificate used has been revoked because it failed to be
checked online the same day it was made.

Also with our mobiles, even Adobe's PDF reader fails to be checked online.
( http://www.adobe.com/products/acrobat/acrreulaforsymbian.html )

Can someone check this product with the online certificate check activated ?
I feel it is maybe our operator doesn't allow to check online certificate.

"Hamish Willee" <[email protected]> a �crit dans le message de news:
[email][email protected][/email]a...
> Hi Manisse
>
> A Certificates revocation list (CRL) was implemented in v7.0s or 8, but
> was
> never usedby licensees and was removed in v9. So if you've found this list
> on the device then there is a good chance that whatever it contains is
> garbage.
>
> The actual check is done via OCSP, online, at the point of installation.
>[color=green]
>> How it comes than checking online certificate always fails ?
> The obvious reason is that the certificate used to sign them has been
> revoked. Does the installation fail for both SIS files?
>
> Regards
> H
>
> "Manisse" <[email protected]> wrote in message
> news:kQ%[email protected]...
>> Hello,
>>
>> i've an application with an uid of 0x2000000A for an S60 2nd3
>> application.
>> The application has been successfully signed with one of the test house
>> mentionned on symbiansigned.
>> Later, the application has been sold to a mobile network operator. I
>> upgraded some things inside and delivered it to the operator who signed
>> it
>> itself.
>>
>> Both version works fine when you install them.
>> However, when we activate 'check certificate online', the check fails
>> with
> a
>> 'revoked certificate' answer.
>> I've tracked the revoked certificates listing and found it is al:most
> empty
>> and none of the applications is listed.
>> How it comes than checking online certificate always fails ?
>>
>>
>
>[/color]

Hi Manisse

If the software installer can't check the server it should report this as an
error, not that the certificate is revoked.
I think you should email [email][email protected][/email] to see what the experts
say.

Regards
H

"Manisse" <[email protected]> wrote in message
news:[email protected]...
> The installation fail for both SIS files.
>
> I don't think the certificate used has been revoked because it failed to
be
> checked online the same day it was made.
>
> Also with our mobiles, even Adobe's PDF reader fails to be checked online.
> ( http://www.adobe.com/products/acrobat/acrreulaforsymbian.html )
>
> Can someone check this product with the online certificate check activated
?
> I feel it is maybe our operator doesn't allow to check online certificate.
>
>
> "Hamish Willee" <[email protected]> a �crit dans le message de news:
> [email][email protected][/email]a...[color=green]
> > Hi Manisse
> >
> > A Certificates revocation list (CRL) was implemented in v7.0s or 8, but
> > was
> > never usedby licensees and was removed in v9. So if you've found this[/color]
list[color=green]
> > on the device then there is a good chance that whatever it contains is
> > garbage.
> >
> > The actual check is done via OCSP, online, at the point of installation.
> >[color=darkred]
> >> How it comes than checking online certificate always fails ?
> > The obvious reason is that the certificate used to sign them has been
> > revoked. Does the installation fail for both SIS files?
> >
> > Regards
> > H
> >
> > "Manisse" <[email protected]> wrote in message
> > news:kQ%[email protected]...
> >> Hello,
> >>
> >> i've an application with an uid of 0x2000000A for an S60 2nd3
> >> application.
> >> The application has been successfully signed with one of the test house
> >> mentionned on symbiansigned.
> >> Later, the application has been sold to a mobile network operator. I
> >> upgraded some things inside and delivered it to the operator who signed
> >> it
> >> itself.
> >>
> >> Both version works fine when you install them.
> >> However, when we activate 'check certificate online', the check fails
> >> with
> > a
> >> 'revoked certificate' answer.
> >> I've tracked the revoked certificates listing and found it is al:most
> > empty
> >> and none of the applications is listed.
> >> How it comes than checking online certificate always fails ?
> >>
> >>
> >
> >[/color]
>
>[/color]