signing

How would I sign a Visual C# executable? SignTool.exe can't find a certificate. How would I create a self signed key and certificate, and have signtool be able to see the certificate and use it? OpenSSL and Visual Studio 2010 Express are installed. Running Windows 7 Ultimate x64. Using SignTool.exe from Windows Driver Kit. Using self-signed certificates for digitally signing your binaries pretty much goes against the concept of using digital certificates with programs. The basic idea is to prove the code was created by you (authenticity) and has not been modified since you released it

We have a piece of code which creates a SigningCredentials object to use to sign xml document by using SHA256 algorithm. It works with .NET 3.5 perfectly. However, when we upgrade our codebase to .NET 4.5, it stops working. Same code, same certificate! I have spent hours on debugging and searching on the internet without any luck. Could anyone please tell me what the problem here is? Thank you in advance. Code to create SigningCredentials: public SigningCredentials CreateSigningCredentials(X509Certificate2 cert) { var ski = new SecurityKeyIdentifier(new X509RawDataKeyIdentifierClause(cert));

I need to sign a PDF document using a certificate that exists in the Windows Certificate Store. I have been digging around all day trying to figure it out, and I am so close yet so far away . All that is missing is this: How do I get an IExternalSignature object to sign the PDF file with? Rahul Singla has written a beautiful example of how to sign a PDF document using the new iText 5.3.0 API - as long as you can access a .pfx file sitting around on your PC somewhere. There is a previous question on signing using a certificate from the Windows Cert Store, except it was using a version of the

I am signing packets in some Java code and I want to verify the signatures on a C server. I want to fork openssl for this purpose (can always use library functions later... when I know openssl can verify the signatures); however, it's failing to do so: openssl dgst -verify cert.pem -signature file.sha1 file.data all it says is " unable to load key file " The certificate says: openssl verify cert.pem cert.pem: /C=.... error 20 at 0 depth lookup:unable to get local issuer certificate However, I specifically don't care about verifying the certificate, I want only to verify the signature for a

Well, I've got my Developer Certificate linked with it's private key. Works Fine. I've downloaded my iOS Profile of distributor, but it says Valid signing identity not found. So I checked my certificates, and exactly, my developer certificate it's linked with its private key but not my distribution certificate. How can I link/add my private keys to this certificate!? Will this solve the problem "Valid Signing identity not found"? Yes, the error you are getting means that there is not a private key on your Mac associated with the distribution certificate you are trying to use to sign the app.

Suddenly my Inno Setup compiler stopped working. Since the last time I used it, I just installed a new certificate issued still to the same company. I've configured the sign tool in this way (NAME is the beginning of the string for the Subject in the certificate): mysigntool="C:\Program Files (x86)\Microsoft SDKs\Windows\v7.1A\Bin\signtool.exe" sign /v /a /s my /n NAME /t http://timestamp.verisign.com/scripts/timestamp.dll And then in the Inno Setup .iss file I have: SignTool=mysigntool SignedUninstaller=yes The sign always fails with exit code 0x1, also if I remove the /t and timestamp.

I have a solution consisting of five projects, each of which compile to separate assemblies. Right now I'm code-signing them, but I'm pretty sure I'm doing it wrong. What's the best practice here? Sign each with a different key; make sure the passwords are different Sign each with a different key; use the same password if you want Sign each with the same key Something else entirely Basically I'm not quite sure what "signing" does to them, or what the best practices are here, so a more generally discussion would be good. All I really know is that FxCop yelled at me, and it was easy to fix by