A provider is developing an android application and told me that SHA2 is not supported because they are using J2ME. Is this really true? I did some google searching and didn't find anything about this.
Another thing that worry me is that they are using J2ME to develop an Android application. Is this a good idea? Isn't more secure to develop using native Android and not Java Microedition?
Thanks in advance.
Best!
On
J2ME can't be used at all for develop an Android app.
According this page, Android does support SHA-2 on 2.3+ version, at least at the browser side. I didn't understand very well the part of "sign the application with SHA-2"
J2ME can be used to develop an Android app. In fact, it isn't the best way but this provider is doing that. Check this out
Running J2me apps on Android phones
The second question is about code signing certificate. Is necessary to sign the application with a code signing certificate. This certificate can use SHA1 or SHA2 (there are another options). My question is about J2ME and the support of SHA2 certificates.
Hope this clarify my question.
Thanks