Windows Mobile digital signature (1)

I have never had time to sort out my own things. I want to write several articles about the digital signature problem of the Windows Mobile Application.

Let's summarize the content about the digital signature that I will write later.

1. When to sign the EXE and DLL.

2. How to sign

3. How to generate your own certificate.

In general, the EXE and DLL do not require a signature, but the system will prompt you. Generally, the signature must be used in the following cases:

1. Use privileged functions:

Appendix A: protected registry key

Registry Key
HKEY_LOCAL_MACHINE/Comm HKEY_LOCAL_MACHINE/Drivers HKEY_LOCAL_MACHINE/hardware HKEY_LOCAL_MACHINE/System HKEY_LOCAL_MACHINE/init HKEY_LOCAL_MACHINE/security HKEY_LOCAL_MACHINE/wdmdrivers HKEY_LOCAL_MACHINE/services Hkey classes_root (device specific)

Back to Top Appendix B: privileged API list

Components	API
Public	Setinterruptevent Setsystemmemorydivision Cesetthreadpriority Cesetthreadquantum Forcepageout Virtualcopy Lockpages Unlockpages Setprocpermissions Setkmode Readprocessmemory Writeprocessmemory Setcleanrebootflag Poweroffsystem Debugactiveprocess CreateProcess (only debug_only_this_process and debug_process debugging flag) Kerneliocontrol
Extended telephone application interface (extapi)	Lineregister Linesetcallbarringpassword Linesetcallbarringstate Lineunregister Linesetpreferredoperator Linesetequipmentstate Linegetgeneralinfo Linemanagecils Linesetuplsclass Linegetnumbercils Linesethscsdstate Linegetussd Linesendussd Linesetsendcalleridstate Linesetcallwaitingstate
Sim Manager	Simunlockphone Simsetlockingstatus Simgetsmsstoragestatus Simchangelockingpassword Simreadmessage Simwritemessage Simdeletemessage Simreadrecord Simwriterecord Simgetrecordinfo
Short Message Service	Smssetmessagenotification Smsclearmessagenotification Smsreceiveallmessagesfromsim Smssetsmsc
Connection Manager	Connmgrprovidermessage
Critical Process Monitor (CPM)	Cpmregister (reboot) Cpmshutdown Cpmstatus Cpmregistertest
Radio Interface Layer	All RIL APIs Note The level of trust required by the ril api can be modified by changing the values of the following registry items from 2 to 1: [HKEY_LOCAL_MACHINE/security/policy/APIs/rilgsm] @ = "2"

2. Mui file: for Mui files (multilingual files ). For example, if I write test.exe, test.exe.0804.muiis used for the simplified Chinese language, and test.exe. 0409.muiis used for English. This is also true for DLL. For example, myappdll. DLL, the corresponding Chinese and English Mui is myappdll. dll.0804.mui and myapdll. dll.0409.mui. in this way, when multiple languages are used, you only need to package the corresponding Mui file and enter it. The system will automatically load the corresponding Mui file without special processing. However, we must sign the Mui file we have written. It cannot be loaded without signing.

Reference: http://msdn2.microsoft.com/zh-cn/library/ms839377.aspx

I haven't written anything for a long time. Let's do it first. I need to sort it out and write it.

To be continued ....