tags:

views:

89

answers:

1
+2  Q: 

Digital Signature/Code Signing Question

I make programs that a lot of people use and one thing that would be nice to have a a digital certificate so when people run it is admin, it will show the user it was made by me and it hasn't been tampered with.

I have done research on this and you do have to pay. I don't mind, just can't be a whole lot.

But the other thing is that.. it seems to only work for business. I do not have a business, I am an individual developer.

So is there a way for an individual developer to get a code signing certificate?

This is for C# WinForm desktop applications, by the way.

+1  A: 

You can indeed get a code signing digital certificate in your name as an individual without having a company, I've done exactly this myself using the heavily discounted Comodo certificates from the Tucows author site.

There's a great walkthrough of all the steps you'll need here. All you need are a domain that's registered in your name with your phone number and address corresponding with your actual details and an email address you can respond from @ that domain. They contacted me to verify I existed and wanted proof of address and phone number (a scanned telephone bill did the trick).

Once you've got the digital certificate you can sign application in myriad ways (I use 'signtool' that comes with the .NET framework SDK).

John Conners  2010-07-29 20:15:17
Thank you for the fantastic answer! Looks good, but I cannot provide them with a telephone and utility bill. Are those important key factors and can they be substituted for something else?
Eaton  2010-07-29 23:40:46
They're looking to verify to the 'best of their knowledge' that you are who you say you are and being able to tie a web site to your physical address which you can also prove you live at then that should be enough. Your best bet is to contact them in advance and ask them, given the evidence you have, if that's enough for them. As it happened my phone bill is in my wife's name but they were happy that it confirmed my address.
John Conners  2010-07-30 13:31:45
is it possible to sign a cab file, then sign it again after altering it? Or do you need a new signature for each software update? thanks.
iddqd  2010-07-30 16:39:16
If you alter a file that will invalidate the digital signature so you'd have to sign it again. I'd assume rebuilding a .cab file would create a new file anyway which wouldn't have the signature (which is appended onto the file itself).
John Conners  2010-07-30 18:48:58
ok many thanks.
iddqd  2010-07-30 22:25:43

related questions

Displaying Flash content in a C# WinForms application
How to get the value of built, encoded ViewState?
Unhandled Exception Handler in .NET 1.1
How do I connect to a database and loop over a recordset in C#?
How do I most elegantly express left join with aggregate SQL as LINQ query
Get a new object instance from a Type in C#
.NET Testing Framework Advice
Automatically update version number
What is the difference between an int and an Integer in Java/C#?
How to write to Web.Config in Medium Trust ?
WinForms ComboBox data binding gotcha
How do you sort a C# dictionary by value?
Adding Scripting functionality to .NET applications
Floating Point Number parsing: Is there a Catch All algorithm?
How do I print an HTML document from a web service?
Decoding T-SQL CAST in C#/VB.net
Anatomy of a "Memory Leak"
How do I get a distinct, ordered list of names from a DataTable using Linq
Reliable Timer in a Console Application
How do I fill a DataSet or a DataTable from a LINQ query resultset ?
What's the difference between Math.Floor() and Math.Truncate() in .NET?
How do I calculate relative time?
How do I calculate someone's age in C#?
Are there any conversion tools for porting Visual J# code to C#?
When setting a form's opacity should I use a decimal or double?