Windows Client development -- sign a signature certificate for your client
Solemnly declare: This method is self-entertaining. Although a signature is written, the certificate without a signature in the Microsoft system is not qualified.
What is a signature?
Not much to say, (no picture to say xx ):
Windows client .exe installation file:
Check another .exe file:
By comparing the two images, You can see whether there is a digital signature difference.
Now, let's start our signature Journey:
First, I want to set a default premise. You are a program developer and you have installed visual studio on your pc.
For example, our exe is calledTest_siginature.exePut it on the desktop.
1 open the vs tool command prompt
2. Create an X.509 Certificate
In the naming prompt, type:
Makecert-sv test_signature.pvk-r-n "CN = dabaojian Company" test_signature.cer
At this time, you will be prompted to enter the password:
Then successed will appear
3. Create a issuer Certificate
Type the following command:
Cert2spc test_signature.cer test_signature.spc
If it is correct, successed will also appear
4. Export the pfx Certificate file
Type the following command:
Pvk2pfx-pvk test_signature.pvk-pi password-spc test_signature.spc-pfx test_signature.pfx-f
The password is the password you just set.
There is no success prompt after running.
5. Sign your own software
Type the following command:
Signtool sign/f test_signature.pfx/p password C: \ Users \ wangs \ Desktop \ test_siginature.exe
The master wants to write the full path of .exe.
6 stamp the timestamp
Type the following command:
signtool timestamp /t http://timestamp.wosign.com/timestamp C:\Users\wangs\Desktop\test_siginature.exe
Timestamp:
Network security software and hardware solutions help individuals and enterprises ensure information security, availability, and integrity.