3.1 Description sommaire de la section4
Sign and timestamp a .CAB file with a Microsoft Authenticode Certificate (Sign vb.net)
Solution ID: vs12036
Answer:
Before following any of instructions below, first go to the following link and download the zip file containing all the Thawte Root Certificates:
http://www.thawte.com/roots/index.html
Once downloaded extract the "Thawte Code Signing CA" Intermediate certificate, then right click the .cer file and choose "Install Certificate" to install it the local machine. This certificate needs to be installed on the machine used for code signing as it is needed in the code signing process.
To sign your code use the following instructions:
1. Please copy your private key(.pvk file) and your Certificate(.spc file) into a folder named 'mykeys' on your c:\ drive.
2. Create a new folder on your c:\ drive named 'signfiles' and copy the .Cab file(s) to be signed into this folder.
3. Go into your command prompt and change directory(cd) into your inetsdk folder.
c:\cd inetsdk
4. Change directory again into your bin folder.
c:\inetsdk>cd bin
5. Using signcode please sign the .Cab file using the following command:
c:\inetsdk\bin>signcode -v c:\mykeys\roger.pvk -spc c:\mykeys\mycert.spc c:\signfiles\mycab.cab -t http://timestamp.verisign.com/scripts/timstamp.dll
6. Your .Cab file is now signed and timestamped, please run Checktrust.exe to ensure that the CAB file has been signed correctly.
c:\inetsdk\bin>chktrust mycab.cab
Also please refer to the following Microsoft article on .Cab file signing: http://support.microsoft.com/default.aspx?scid=kb;EN-US;q247257
Notes:
If you do not have an inetsdk folder or do not have SDK installed, then you need to download SDK. It can be obtained freely online or alternatively send an e-mail to support@thawte.com and we'll gladly send you the relevant files.
Please note that timestamping code allows it to be usable for an extended period of time, as the browser validates the timestamp. If the code is downloaded after the Certificate is expired (and it has been timestamped) you will not receive an error indicating that the certificate has expired. Please specify Verisigns' timestamp server url when you sign the .Cab file, the timestamp server validates the date and the time that the cabinet file was signed. The Certificate expires but the signature will be valid for as long as the .Cab file is in production
Signing a vb.net application is similar to singing a cab file. Hence you may use the instructions above in conjunction with InetSDK. For more information and tutorials on Visual Basic please see: http://msdn.microsoft.com/vbasic/community/videos/
Goal:
Sign code
Sign cab files
Timestamp cab files
Sign vb.net application
(vb.net
This applies to: (Includes, but not limited to):
Sign Code
Multipurpose Certificate
Code Signing Certificate
Cab files
Timestamp
vb.net
|