MIDlet Signing a tutorial (or sorts)

Similar Messages

• Midlet Signing

  Hello,
  Questions
  - Is trusted third party signing enough to reach a significant amount of JSR-75 compatible mobiles, with a good user experience ?
  -What is the best third party for signing midlets ?
  - Is Manufacturer & Operator Sining feasible for a small company ?
  Background
  we're involved in a project that aims at accessing various data on the memory car/Internal memory/Sim+ memory of mobile phones.
  we know JSR-75 "File connection" is a must to do that, and we wish to use it on every capable phone.
  Different-devices = different-behaviour
  However, we are facing a platform/menufacturer specific issue :
  With an unsigned midlet :
  -Nokia device (6680, 6120, n95...) give access to the data, but keeps asking the permission to the user each time he wants to read a single file
  -Sagem (my700x) device allows us to configure the program so that we're asked only once the permission.
  - Motorola (RAZR V3i) freezes....
  Midlet signing solutions
  I know that midlet signing can help. However, we don't know which signing process suites our need :
  - Java Code Signing (self-certification using keytool)
  - Java Code Signing - Trusted third party (buying the certificate from Verysign or Thawthe as in google mail)
  - Manufacturer & Operator.
  Edited by: Nicolas_Dmailer on Dec 19, 2007 8:16 AM
  Edited by: Nicolas_Dmailer on Dec 19, 2007 11:53 PM

  Signing issue related with permission of midlet like to send the SMS to open the http connection that api required certification of third party & u can sign the midlet using tool givan by java itself
  here is link u can see the how to sign the midlet first then follow the certification procedure
  http://developers.sun.com/techtopics/mobility/wtk/demos/wtk-sign.html
  its link how can sign with wireless tollkit
  to certification u can follow but u have to check u rdevice which certification support then choose
  1) Verisign certification : u can visit www.verisign.com here u got the link for digital key under u got link for for sun java certification
  2)Also u can follow thawte certification : u can visit also thwate.com
  3)Or u can visit for java certification www.javacertification.com
  Regards
  AB
  for RMS persistence issue no need of signing u have to check code

• Midlet sign with certificate

  Hello
  I have developed an application that check some data in a DB and in some
  cases it sends to a specific GSM an SMS as an alert. The problem was when
  I wanted to deploy this application on my target phone (Nokia 6230) cause if
  you want to send a SMS you always have to confirm this action. The phone
  always asks you if it can send this SMS. The problem is that this action
  should be automatically triggered and I can not always confirm to send SMS.
  I have read that the solution is to sign you midlet with a valid certificate and
  then the phone will not ask for confirmation any more.
  Can someone give me an advice where I can acquire such certificate and how
  this signing can be done. Any information will be useful.
  Thank to all
  Mitja

  Verisign ot Thawte are you best bet. Not that cheap though, and they may not be available on all carriers & phones.
  Google for MIDlet signing for some excellent tutorials.

• MIDlet signing help

  I am having trouble with signing and perhaps you can help.
  We signed our SMS MIDP 2.0 application with a key generated with the J2ME wireless toolkit. We tried to install it on a Samsung SGH-E715 running on T-Mobile network and get "Installation error: info invalid". I have been told that these certificates only work with the toolkit and we need a valid certificate for phones. Is that correct?
  It appears that this phone does requires signing though, as we tried installing it without signing and got "Installation error: authentication failure." I assume that has to do with the following in the .jad file:
  MIDlet-Permissions: javax.wireless.messaging.sms.receive,javax.wireless.messaging.sms.send,javax.microedition.io.Connector.sms,javax.microedition.io.PushRegistry
  After installing without MIDlet-Permissions and then trying to send an SMS message, we of course get a security exception complaining about accessing a restricted API.
  Is there any way to sign the midlet with a trusted "development" certificate? I am on a very tight budget.
  Thanks in advance.
  Jim

  You must know that what we call third party certificates (thawt, verisign) are not supported by all the market's devices.
  To run, a signed application( ex thawte), must be installed on a device which contains that root certificate (thawte) !
  There are some operator cetificates too ( vodafone, T mobile) and the Java verified one (UTI) which is supported on a large part of market's devices.
  Finally, manufacturer certificates, (Motorola) are delivered for free, but can only be used on one phone ( you've to send the phone's UID to Motorola).
  I became crazy by all this issues, I lost most of my time in trying to sign my applications to test them !
  (I have a dream) I think that it will be a good idea to make a testing certificate (by java, why not) which will be supported on all devices !
  thanks, Idir.
  Edited by: skizo on 21-Aug-2008 11:18
  Edited by: skizo on 21-Aug-2008 11:19

• How Midlet Signing prevents code modification.

  Hello
  I've previously read somethings about signing but never experienced it.
  I have a question now.
  Every where it is said that signing a midlet prevents others from modifying my code and distribute it under my name.
  Is this easy for any user to check the certificate owner on his handset??
  And could you please tell me how it can be done??

  Yeah, I'm pretty sure of that thanks to watching the diagnostics window. Everything falls apart at that point. Yes, Class 3 root certs are installed on the devices.
  We're regenerating our cert, so we'll see what happens then and hopefully our problem is solved.
  Thanks for the reply!

• Wanted: Help with Signed Applet Tutorial

  I'm trying to follow this tutorial and I'm confused about the file name of the policy file.
  [http://java.sun.com/developer/onlineTraining/Programming/JDCBook/signed.html|http://java.sun.com/developer/onlineTraining/Programming/JDCBook/signed.html]
  Below is the code that goes into the policy file (from the above URL). Now where do I put it on a windows machine? %HOMEDRIVE%%HOMEPATH%? What do I specify as the keystore?
  How do I edit it for a windows machine running cygwin?
  Thanks,
  Siegfried
  {keystore "/home/ray/raystore";  
  // A sample policy file that lets a program   
  // create demo.ini in user's home directory  
  // Satya N Dodda  
  grant SignedBy "company" {  
    permission java.util.PropertyPermission   
      "user.home", "read";  
    permission java.io.FilePermission   
      "${user.home}/demo.ini", "write";  
  code}                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                       

  I believe that you can find the necessary details in this tutorial:
  [http://java.sun.com/docs/books/tutorial/deployment/jar/signindex.html]

• A Scanner Darkly Effects Tutorial (Well sort of...)

  As this movie has prompted a slew of requests for "how to achieve this effect...", I thought I'd post this which I amended slightly from a tutorial in issue 18 of 'Practical Digital Video' magazine. (I have no connection with this magazine apart from buying this particular issue)
  I've tried it in a short sequence and it works...sort of!
  You'll need Photoshop and fiddle around with the values to achieve the best effect.
  I've done this using FCP4.5HD and 10.3.9, but should work in other versions.
  Find a sequence that you want to work with and go file>export>QuickTime conversion.
  Under ‘format’, choose ‘image sequence’, then under ‘options’, choose TIFF as the format and change the Frames per Second to 25 (If working in PAL).
  Select the ‘options’ button and change the compression to none.
  Save the files to a new folder (as there will be lots of them).
  Next, you need to open one of the files in Photoshop in order to experiment with it to find the best effect.
  Go Image>Pixel Aspect Ratio and choose the one that best suits your needs.
  Control click the background layer in the layers window and choose Duplicate layer.
  Name this new layer ‘Shading’ and hide it by clicking on the eye icon to it’s left.
  Select the background layer and go Filter>Artistic>Cutout and change the values to suit your image’s needs. As a starting point, try Number of Levels=8, Edge Simplicity=4 and edge fidelity=2.
  Next select the ‘Shading’ layer and then go Image>Adjustments>Desaturate.
  With ‘Shading’ still selected, go Image>Adjustments>Brightness/Contrast. Change the values until the edges stand out more. Try increasing both by 25.
  Next go Filter>Stylize>Glowing Edges. Change the parameters until little detail is left outside the main edges. Start with Edge Width=2, Edge Brightness=10 and Smoothness=10. Click OK.
  Then go Image>Adjustments>Invert. This inversion may reveal more detail which is not wanted so to limit this you can go back to Image>Adjustments>Brightness/Contrast and change the levels again if necessary. Try Brightness=10, Contrast=40.
  Now, in the layers tab, (with the ‘shading layer’ still selected) change the blending mode from ‘normal’ to ‘darken’.
  Next you need to automate this process, in Photoshop, for each frame. Close the current image without saving and open a new one. The ‘History’ window has a tab to it’s right called ‘Actions’ – click on it.
  At the bottom of the Actions window is a series of icons. The second from the right lets you create a new one. Click on it and name your action; once you’ve clicked on record, every step you take in Photoshop will be recorded to enable you to use them again later on.
  Repeat the steps you previously took, starting with the aspect ratio change and ending with the composite mode change (from normal to darken)., using the values you have set for your images. Once the final step has been taken, go Layer>Flatten Image. Click on the square to the left of the red circle to stop the recording.
  Lose your current file without saving it. Go File>Automate>Batch. Make sure ‘Source’ is set to ‘Folder’ and choose your folder of exported images. ‘Destination’ should also be set to Folder. Choose or create a folder where your modified files will be sent to.
  Activate the automation process by clicking on OK. Photoshop will now transform each of your images based on the values given to it by the ‘Action’ you created.
  Depending on the number of files you have used and the speed of your Mac, this process may take some time.
  To import your files back into FCP, drop the folder of modified images into the browser. To turn your still back into moving images, ensure that sequence you originally exported is open, drag the folder from the browser to the timeline to an empty video track above the original video and (ensuring the arrow is pointing downwards) release the mouse.
  (Depending on your Mac’s configuration, the sequence may not play back properly - in this case, you could export the sequence again , making it self-contained, before re-importing.)

  Wow. I think I'll just remove xfce and all the stuff and just start from scratch with LXDE along with some other packages I want. I'll just have to make that list...
  ~LXDE -PCManFM +Thunar probably
  ~system-config-printer
  ~I've heard a lot about laptop-mode-tools and how great it is in LXDE. I need a good power manager that works.
  ~Firefox for web browsing, although I hate that slow beast, it's probably my best shot as far as compatibility with web pages and overall use goes (unless someone could suggest a nicer browser for linux?
  ~Openoffice (sigh) unless there's a better alternative? I would use abiword but I hate that it has it's own stupid .abw format. If only it could use .odt by default and had MS Office filters just as good as openoffice!
  Um.. ya
  Also, is there any one simple command that will remove ALL of my GUI tools except for X11 (and my xorg.conf)? I don't like package hunting and deleting in small groups. Or if I did remove X11, then would all my apps like firefox and gimp that require a GUI be removed as well?
  Last edited by Redrazor39 (2009-01-11 17:18:36)

• NetBeans Midlet signing not working for Sony Ericsson M600i

  Hi,
  I'm developing an midlet that uses FileConnection class extensively. I intend to deploy the midlet on Sony Ericsson M600i. I want to make my Midlet a trusted one so that the annoying warning popups stop each time access the device filesystem.
  I created a keystore in netbeans and created a certificate using keytool using that keystore. Then I installed the certificate on the device. When I tried to depoly the midlet it says 'security check failed. cant install'.
  the device has MIDP 2.0 and CLDC 1.1
  pls explain how to make my Midlet trusted.
  thank you in advance

  pls explain how to make my Midlet trusted.You have to purchase a certificate (Verisign, Thawte...). NetBeans and WTK self-generated certificates are only for testing on the emulator and are not recognized by any handset (the root certificate is not available in the certificate store). And then, whether your purchased certificate is recognized by a specific device is both manufacturer/model and carrier dependent.
  For self-signing MIDlets for Nokia Series 60 handsets, see SD's topic [n]Free Self Signing Midlet for Series 60 3'rd Edition at
  {color:#0000ff}http://forum.java.sun.com/thread.jspa?threadID=5212743{color}
  Haven't come across anything similar for SE phones though.
  cheers, Darryl

• Midlet signing for testing

  hi experts,
  l'm developing a midlet that uses PushRegistry, i knew the midlet need to be signed in order to get rid of the permission prompt. Any others way to get rid of the prompt when run in the actual device for developement and testing purpose?
  many thanks.

  ffjia wrote:
  ngoonee wrote:
  For reference, you can't post to [arch-dev-public] (I've tried it before), its read-only for non-devs.
  There's also been a bit of noise on [arch-dev-public] (about 2-3 months ago?) about getting a new category 'testers' to supplement the current devs and TUs. Basically a group of people who are trusted to say 'yes this package in [testing] works' but not to actually upload packages etc.
  It's read-only for non-devs? I remember seeing "User signoffs are fine" some day, does that mean non-devs can signoff?
  For those, send the signoff to [arch-general].

• MIDlet signing [openssl approach to generate CSR]

  Guys,
  Here are the questions that needs verification..
  1. Aside from Wireless Toolkit - JadTool.jar, What is another way to sign the MIDlet?
  a. the approach used to generate CSR was openssl.
  2. Is it possible to sign the MIDlet, if the CSR generated is from openssl approach? [Files generated r: .key and .csr] We know that on keytool approach [Files generated r: .keystore, .alias and .csr]
  3. Does Openssl technology is used only for web signing?
  4. Does certificate for web is different from mobile?
  5. Is it possible for one CRT file from Verisign, it can be use to certify WEB and mobile?
  Thanks in advance..
  Edited by: eesbee on Jul 30, 2009 3:03 AM

  Guys,
  Here are the questions that needs verification..
  1. Aside from Wireless Toolkit - JadTool.jar, What is another way to sign the MIDlet?
  a. the approach used to generate CSR was openssl.
  2. Is it possible to sign the MIDlet, if the CSR generated is from openssl approach? [Files generated r: .key and .csr] We know that on keytool approach [Files generated r: .keystore, .alias and .csr]
  3. Does Openssl technology is used only for web signing?
  4. Does certificate for web is different from mobile?
  5. Is it possible for one CRT file from Verisign, it can be use to certify WEB and mobile?
  Thanks in advance..
  Edited by: eesbee on Jul 30, 2009 3:03 AM

• Midlet Signing : Questions

  I've gone through the process of signing a Midlet in an attempt to make it trusted and now have a JAD file that contains the certificate entry and signature entry. However when loading the Midlet on devices it fails the installation, stating security or authorization failure.
  In brief here are the steps taken.
  1. Use J2SE keytool to generate a key pair.
  2. Use J2SE keytool to create a CSR
  3. Send CSR to VeriSign for Certificate generation
  4. Use J2SE keytool to import certificate purchased from VeriSign
  5. Import the J2SE keystore (the based on Alias used in J2SE) into the WTK.
  6. Use WTK JADTool to add certificate to JAD file
  7. Use WTK JADTool to generate a signature and add it to the JAD file.
  Questions
  A. What type of certificate must be requested from VeriSign? They have code signing certifcates, server certificates etc.
  B. What key algorithm must be used during step 1 above for generating a key pair?
  C. Is it necessary to import the J2SE keystore into the WTK if using the JADTool command line to do the signing?
  D. After step 5 above attempting to sign the Midlet from within the WTK gui resulted in nothing being added to the JAD file but also no error message of any kind. Any idea why this would happen?
  E. When using the JADTool in steps 6 and 7 above I referenced the J2SE keystore with the command line options. Is this correct or must it reference the WTK keystore?
  JDK 1.4.2.03 and WTK 2.1 used.
  Thank You
  Ken Carlino

  Hi there,
  I am having the same problem, If you have fixed your problem can you please post the solution on this forum ? I need to sign my midlet, i do not know what type of certificate shall i buy from verisign to sign my midlet. Does verisign cover most phone as CA built on to the devices???

• Midlet Signing Problem

  I signed a midlet and tried to load it to my Cingular Motorola V557 phone.
  All I want is to use Bluetooth. So I bought a Verisign Java Code signing certificate and did everything the tutorials told me to do in regards to the keystore file. I am using EclipseME and set it to sign my midlet using that keystore, it correctly asks me for my passwords so I know it tried to do its work.
  When I upload it to the phone I get the following error:
  Authorization failed, application not installed.
  I am a noob to signing java code so I am hoping this is something fundamental:
  Here is a copy of my jad file:
  MIDlet-Jar-Size: 40360
  MIDlet-1: tbt,,midlets.BluetoothTest
  MIDlet-Jar-URL: tbt.jar
  MIDlet-Jar-RSA-SHA1: a8I0l6zLBH6JoL0VGnHjaJ5rZ8YptQf1q7tW1BzXe+Xr4EWVp4mrhtfhAy1dooXFYj2aihZg5IaCcG4mWb6fTnpWkwUo1mUt8J88HUu8kaPrRywfJJ1DX+BM2zeHnffck4Psg4S+Iv6LqhaSzr7vzFvMF2uxvRrz7qkSdVFXOiw=
  MicroEdition-Configuration: CLDC-1.1
  MIDlet-Version: 1.0.10
  MIDlet-Certificate-1-2: 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
  MIDlet-Certificate-1-1: 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
  MIDlet-Name: tbt Midlet Suite
  MIDlet-Vendor: Midlet Suite Vendor
  MicroEdition-Profile: MIDP-2.0
  MIDlet-Permissions: javax.bluetooth.DiscoveryAgent
  Is there a tool or something I can grind this through to determine what the problem might be?
  Thanx
  Bodger

  It apparently has something to do with the midlet permission string.
  The one I had was definitely wrong.
  So, I now have:
  javax.microedition.io.Connector.bluetooth.client
  Now I get this error when I try to load the midlet, this is from my phones debug log:
  SM_GetNumRootCerts: Total number of KJAVA certs on SIM and NVM (Type-3): 0, 0
  SJ_IsCoreletDI: Synerj signature not found into the JAD file
  SM_GetRootCertificate: DN = C="US";O="VeriSign, Inc.";OU="Class 3 Public Primary Certification Authority", Type = 15
  SM_GetRootCertificate: Subject key ID extension is not present.
  sm_LoadDomainRegistryIDs: number of domains = 6
  sm_LoadDomainRegistryIDs: number of permissions = 28
  sm_LoadDomainRegistryIDs: domain "0" name length = 3f
  sm_LoadDomainRegistryIDs: Read domain: 'CN="Cingular Preferred Root CA",O="Cingular Wireless, LLC",C=US' with 8 permission groups
  sm_LoadDomainRegistryIDs: domain "1" name length = 3d
  sm_LoadDomainRegistryIDs: Read domain: 'CN="Cingular Trusted Root CA",O="Cingular Wireless, LLC",C=US' with 10 permission groups
  sm_LoadDomainRegistryIDs: domain "2" name length = 42
  sm_LoadDomainRegistryIDs: Read domain: 'CN="GeoTrust CA for UTI",O="Unified Testing Initiative (UTI)",C=US' with 3 permission groups
  sm_LoadDomainRegistryIDs: domain "3" name length = 55
  sm_LoadDomainRegistryIDs: Read domain: 'O="Motorola Inc",C=US,ST=Illinois,L=Libertyville,OU=PCS,CN="Manufacturer Domain 40-1"' with 10 permission groups
  sm_LoadDomainRegistryIDs: domain "4" name length = 4b
  sm_LoadDomainRegistryIDs: Read domain: 'OU="Class 3 Public Primary Certification Authority",O="VeriSign, Inc.",C=US' with 3 permission groups
  sm_LoadDomainRegistryIDs: domain "5" name length = 10
  sm_LoadDomainRegistryIDs: Read domain: 'Untrusted_Domain' with 2 permission groups
  sm_LoadDomainRegistryIDs: WARNING! Permission UID "0x301e" not found on the device
  sm_LoadDomainRegistryIDs: WARNING! Permission UID "0x301e" not found on the device
  sm_LoadDomainRegistryIDs: WARNING! Permission group UID "0x100b" not found on the device
  sm_LoadDomainRegistryIDs: WARNING! Permission UID "0x301e" not found on the device
  sm_LoadDomainRegistryIDs: WARNING! Permission UID "0x301e" not found on the device
  sm_LoadDomainRegistryIDs: WARNING! Permission group UID "0x100b" not found on the device
  sm_LoadDomainRegistryIDs: WARNING! Permission UID "0x301e" not found on the device
  sm_LoadDomainRegistryIDs: WARNING! Permission UID "0x301e" not found on the device
  SM_MapDomainToRootCert: certType = 4, certName = 'C="US";O="VeriSign, Inc.";OU="Class 3 Public Primary Certification Authority"'
  SM_MapDomainToRootCert: Found domain: 'OU="Class 3 Public Primary Certification Authority",O="VeriSign, Inc.",C=US'!
  SM_getDomainPermissions: Domain name: OU="Class 3 Public Primary Certification Authority",O="VeriSign, Inc.",C=US
  SM_getDomainPermissionGroup: Domain name: OU="Class 3 Public Primary Certification Authority",O="VeriSign, Inc.",C=US, Requested group: 6
  sm_SetDomainPermissions: Critical permission 'javax.microedition.io.Connector.bluetooth.client' is not found in domain!
  SECMGR_verifyJADSecurity: Returned error code: 23
  SECURITY_MANAGER FINAL CODE: 23. DATE: 01-09-2006 16:40:17 (81)
  AMS ERROR: AMS_JADR_PROCESSING, 103, 23
  AMS: AMS_STATE_CHANGED_TR, 21
  AMS: AMS_INST_EXIT
  AMS: "ams_Inst_Start_Posting, code ", 10
  AMS: AMS_INSTL_FINALIZATION
  AMS: AMS_HEAP_RELEASED_TR
  AMS: "ams_Inst_Finalize() end."
  AMS: AMS_STATE_CHANGED_TR, 0
  JsaInst : JsaInst_Exit.
  [AMSDLG] : AmsDlgGainFocus route id=41.
  [AMSDLG]: process event_list code=20 route id=41..
  JTOOLS : Event 0x14 has come
  AMS: "ams_Inst_Exit() end."
  This has to be the problem can you give me some idea how to proceed?
  'javax.microedition.io.Connector.bluetooth.client' is not found in domain!
  Thanx
  Bodger

• MIDlet signing -trusted third party

  Hi all,
  I have signed my MIDlet and it shows as trusted third party, in my Nkia 6630 device.
  I was expecting it would prevent me from asking everytime when push message arrives to start application but it did not. And in suite settings there is not "always allowed" choice. Do you have any idea regarding this problem, because if it is going to ask everytime then certificate does not make any sense at all.
  Cheers

  It turns out that after the code signing certificate was downloaded, the private key was somehow lost or damaged or not associated with it in the first place. That is why I was not seeing the option to export the key. We needed to use certutil to repair
  the key association.
  I suspect this is because the request was made from a web form and handled by the 3rd party CA as opposed to being done with certreq. Am I off base?
  Anyway, running this command on the code signed certificate allowed me to export it as needed for SCUP:
  certutil -repairstore my "SerialNumberofCert"
  There are some how tos here:
  http://support.microsoft.com/kb/889651
  http://blogs.msmvps.com/ivansanders/2011/07/26/restoring-a-certificates-private-key-without-the-certreq/

• TUTORIAL: NSDictionary Sorting By Value using NSNumbers and NSStrings

  Even though this may be a basic topic for some, I struggled with it as usual, so here's what I learned.
  Very short, a few screen captures, and a half a page of text total.
  As usual shows the source code, and I included the project.
  This is what I learned today while hanging around the forum.
  Got some great help, and would particularly like to thank RayNewbie for getting me on the right track, and etresoft who tried to help me with the hybrid bindings problem that was eventually solved by xnav, and K T as well for trying to get me on the right path with my myriad of messages...
  ABOUT THE DICTIONARIES :
  http://www.journey-of-flight.com/bhxcode/how-to/0105_Sort_Array_ByValue/index.php
  I really am grateful to those who take the time to help.
  Thank You...
  Bill Hernandez
  Plano, Texas

  When I first created the project I was going to use arrays, and as it turned out I used arrays, and a couple of dictionaries, one original and one sorted with the results.
  I created a new project, and took some of the screen captures again.
  The corrected project, that reflects the correct topic is :
  http://www.journey-of-flight.com/bhxcode/how-to/0105_Sort_Dictionary_ByValue/index.php
  Sorry for the goof...
  Bill Hernandez
  Plano, Texas

• Midlet signing - is it worth it ?

  Hi,
  What I don't understand is, how signing prevents a hacker, to copy the Java program, re engineer it with some other code, and then publish it with the same name - with no signature. What does the user need to do in order to verify that the version he has - is signed ?
  Also, is there a list somewhere of which Cellular models work with which public key provider.
  And finally, which company is the best to but a Public Key for Nokia cellulars.
  Thanks

  If at all possible, keep the pc alive.  You will need a place to backup your stuff that will not go to the cloud.  If your pc supports the current version of I tunes, then load it up and make that your central storage place.   If your problem is simply lack of disk space on the pc, external USB drives are pretty cheap.
  In any event, you will need I tunes to get the non purchased music o to your pad, so you will need a pc at some point.