Keystore for Android app

Question

I exported application for the first time and I'm a little bit confused about keystore.

I want to use one keystore for all next apps. So in Eclipse I will make new keystore but what to put in Alias? Can I put there app name or what? Because I want make universal keystore for all kinds of apps. Can I will put different Alias in my next app? Or will be better to put in alias my first and last name?

Is keystore visible when someone decompile your app?

Thanks for little explanation about keystores.

Answer 1

The keystore is simply a file format designed to contain one or more keys, a.k.a. certificates. It doesn't matter whether you keep all your keys in a one keyfile, and it doesn't matter what you name the keyfiles or the key aliases. Nothing but the actual content of the key itself has any affect whatsoever on your app.

The keystore does not normally become part of the app, and you should make sure not to put it in your /res folder or anywhere else where it might end up getting compiled into the APK. In fact, it's probably a good idea to keep it outside the project directory entirely. Most of the strength of the key is in the practical impossibility of guessing or regenerating its contents. If someone acquires a copy of your keystore, the only thing stopping them from publishing bogus versions of your app is whatever password you put on it.

If you want to split hairs, the docs are wrong. The certificate does not identify the author of the app. It only proves that the app was signed by someone who was in possession of your key. Protect your keystores!

Answer 2

If you want to have one keystore file for all the apps then you cannot change the alias name. It is asked during creating the keystore file. Next time whenever you compile and build the apk file you have to use the existing keystore file.

Hope you understood.