Just writing some quick notes.
Its is compulsary to sign your driver with a digital certificate on Windows 7 64bit edition. In fact it is a good practice to sign all your binaries with a digital certificate that will ensure that your binaries are not modified when user;s run them on their machines.
To sign a binary or a driver, you need a buy a Code Signing certificate from Verisign, Thawte or other cert providers.
If you are going to sign drivers also, it is recommended to purchase your cert only from Microsoft recommended SSL cert vendors as listed on this site: http://msdn.microsoft.com/en-us/windows/hardware/gg487315#EYAAC
Microsoft though has tried to keep the signing simple, but you still need to understand the cross certificate issue as mentioned on the above link and make sure you have compatible certs setup.
For drivers, More details are provided in a document on this URL: http://msdn.microsoft.com/en-us/windows/hardware/gg487328
For simple binary signing, please search for Microsoft Authenticode signing, or signtool. Always refer to documentation only from microsoft domain sites.
Though scattered, MS does provide all info.
Its is compulsary to sign your driver with a digital certificate on Windows 7 64bit edition. In fact it is a good practice to sign all your binaries with a digital certificate that will ensure that your binaries are not modified when user;s run them on their machines.
To sign a binary or a driver, you need a buy a Code Signing certificate from Verisign, Thawte or other cert providers.
If you are going to sign drivers also, it is recommended to purchase your cert only from Microsoft recommended SSL cert vendors as listed on this site: http://msdn.microsoft.com/en-us/windows/hardware/gg487315#EYAAC
Microsoft though has tried to keep the signing simple, but you still need to understand the cross certificate issue as mentioned on the above link and make sure you have compatible certs setup.
For drivers, More details are provided in a document on this URL: http://msdn.microsoft.com/en-us/windows/hardware/gg487328
For simple binary signing, please search for Microsoft Authenticode signing, or signtool. Always refer to documentation only from microsoft domain sites.
Though scattered, MS does provide all info.
2 comments:
Great info.. thanks a lot
Very helpful information.
Post a Comment