What's in this directory?| cdimage.debian.org
What's in this directory?| cdimage.debian.org
Skip Quicknav| cdimage.debian.org
The Android APK signing model sets the expectation that the signing key will be the same for the entire lifetime of the app. That can be seen in the recommended lifetype of an Android signing key: 20+ years. On top of that, it is difficult to migrate an app to a new key. Since the signing key is an essential part to preventing APKs from impersonating another, Android signing keys must be kept safe for the entire life of the app.| Guardian Project