The process of creating signed packages involves three basic steps:
Creating an unsigned, directory-format package.
Importing the signing certificate, CA certificates, and private key into the package keystore.
Signing the package from Step 1 with the certificates from Step 2.
The packaging tools do not create certificates. These certificates must be obtained from a Certificate Authority, such as Verisign or Thawte.
Each step for creating signed packages is described in the following procedures.