The cross-certificate itself is added by the code-signing tools to the digital signature of the binary file or catalog. Cross-certificates are added to the digital signature by the developer or software publisher when signing the kernel-mode software. Digitally signing kernel-mode software is similar to code-signing any software that is published for Windows. The cross-certificates that are provided here are used with the Windows Driver Kit (WDK) code-signing tools for properly signing kernel-mode software. Extend the chain of trust to multiple commercial CAs that issue Software Publisher Certificates (SPCs), which are used for code-signing software for distribution, installation, and loading on Windows.Allow the operating system kernel to have a single trusted Microsoft root authority.Cross-certificates provide a means to create a chain of trust from a single, trusted, root CA to multiple other CAs. Cross-Certificates OverviewĪ cross-certificate is a digital certificate issued by one Certificate Authority (CA) that is used to sign the public key for the root certificate of another Certificate Authority. ![]() ![]() ![]() For more info, see Deprecation of Software Publisher Certificates, Commercial Release Certificates, and Commercial Test Certificates. The Microsoft Trusted Root Program no longer supports root certificates that have kernel mode signing capabilities.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |