[higherpurpose]

And if you're going to add signatures please don't make them MD5/SHA1. I don't understand why so many sites still offer those. Is it some default feature of some software stack where developers just "check" a button for signatures and it only supports MD5/SHA1? Otherwise I can't explain it.

[JohnTHaller]

In Windows world, you basically have to use SHA1 digests for digital signatures (though you use SHA2 certs to do the signing) as Windows XP doesn't support SHA2 at all, Windows Vista SP1 or SP2 prior to a patch a view years ago won't run the EXE or show an error due to a buffer overrun, and Windows Vista's Internet Explorer full patched will show the download as "reported unsafe" due to an unfixed bug in IE.

[CyberShadow]

What do APK signatures have to do with Windows?

[JohnTHaller]

I was giving an example of a context when using something stronger than SHA1 doesn't work even though it is supported. To show that there are sometimes reasons other than laziness and on the off chance that there may be something similar with specific versions of Android or possibly some software that deals with APKs.

[sarciszewski]

I recommend RSA (GnuPG) or Ed25519 signatures with two key pairs: A weekly/monthly signing key pair, and a long-term one that is only used to validate the short-term public key.

https://scott.arciszewski.me/blog/2015/01/package-signing-th...

[eropple]

That's an excellent way to ensure nobody checks your signatures, though. Making it hard means they will be ignored.

[drdaeman]

Key rollover and certificate trust chains don't work in Android world.