[英]What information of a certificate used to sign an application is stored in the application?
I need to know if the information contained in the certificate used to sign a .Net application is stored somewhere in the binary file. 我需要知道用于签署.Net应用程序的证书中包含的信息是否存储在二进制文件中的某个位置。
We need this information to decide if we should buy a trusted certificate from Verisign or alike or if it is the same if we use one created with Visual Studio. 我们需要这些信息来决定是否应该从Verisign或类似公司购买受信任的证书,或者如果我们使用由Visual Studio创建的证书,则该证书是否相同。
It's the same as using a self emitted certificate in a web site, there will be a warning saying that the certificate doesn't come from a trusted authority. 这与在网站中使用自发证书相同,将出现警告,指出该证书不是来自受信任的机构。 Signing data is stored in binary file. 签名数据存储在二进制文件中。
"The publisher can now begin signing and distributing software on the Internet. Publishers use utility programs to sign the software they intend to publish. The utility programs use the private key to generate a digital signature on a digest of the binary file and create a signature file containing the signed content of a public key certificate standard (PKCS) #7 signed-data object. (For more information about PKCS #7, see the RSA specification listed in Appendix D: Suggested Reading.) The PKCS #7 signed-data object also contains a copy of the software publishing certificate. For portable executable image format files, the PKCS #7 signature file contents are stored in the binary file itself, in an additional section. “发布者现在可以开始在Internet上签名和分发软件。发布者使用实用程序来签名他们打算发布的软件。这些实用程序使用私钥在二进制文件的摘要上生成数字签名并创建签名。包含公钥证书标准(PKCS)#7签名数据对象的签名内容的文件(有关PKCS#7的更多信息,请参见附录D:建议阅读中列出的RSA规范。)PKCS#7签名数据该对象还包含软件发布证书的副本对于便携式可执行图像格式文件,PKCS#7 签名文件的内容存储在二进制文件本身的附加部分中。
https://msdn.microsoft.com/en-us/library/ms537361(v=vs.85).aspx https://msdn.microsoft.com/zh-CN/library/ms537361(v=vs.85).aspx
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.