Windows Client development -- sign a signature certificate for your client

Windows Client development -- sign a signature certificate for your client

Solemnly declare: This method is self-entertaining. Although a signature is written, the certificate without a signature in the Microsoft system is not qualified.

What is a signature?
Not much to say, (no picture to say xx ):
Windows client .exe installation file:

Check another .exe file:

By comparing the two images, You can see whether there is a digital signature difference.

Now, let's start our signature Journey:
First, I want to set a default premise. You are a program developer and you have installed visual studio on your pc.

For example, our exe is calledTest_siginature.exePut it on the desktop.

1 open the vs tool command prompt

2. Create an X.509 Certificate
In the naming prompt, type:

Makecert-sv test_signature.pvk-r-n "CN = dabaojian Company" test_signature.cer

At this time, you will be prompted to enter the password:

Then successed will appear

3. Create a issuer Certificate
Type the following command:

Cert2spc test_signature.cer test_signature.spc

If it is correct, successed will also appear

4. Export the pfx Certificate file
Type the following command:

Pvk2pfx-pvk test_signature.pvk-pi password-spc test_signature.spc-pfx test_signature.pfx-f

The password is the password you just set.

There is no success prompt after running.

5. Sign your own software
Type the following command:

Signtool sign/f test_signature.pfx/p password C: \ Users \ wangs \ Desktop \ test_siginature.exe

The master wants to write the full path of .exe.

6 stamp the timestamp
Type the following command:

signtool timestamp /t http://timestamp.wosign.com/timestamp C:\Users\wangs\Desktop\test_siginature.exe

Timestamp:
Network security software and hardware solutions help individuals and enterprises ensure information security, availability, and integrity.