Code Signing

You probably noticed that the keychain redisplays its authorization dialog when you run a newer version of dumpem was run. This can be annoying for the user every time they upgrade your software.

Starting in Mac OS X 10.5, Apple introduced code signing, which is a way to digitally sign application code and resources. When the user OKs a keychain authorization dialog, the system sees if the application was signed. If it is, this fact is noted. If a newer version of the application accesses the keychain, the system sees if the app is signed by the same entity that signed the prior version. If so, the system knows that both applications came from the same place and allows the keychain access to happen without interruption. Keychain ...

Get Advanced Mac OS X Programming: The Big Nerd Ranch Guide now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.