tags:

views:

18

answers:

2
+2  Q: 

How do you know if a CA is trusted?

I have a client who wants their app code signed, so we pointed them to a few well known, well trusted CAs (Verisign, Thawt, etc), then they came back with InstantSSL (because it was only 180/yr as opposed to 500/yr).

How do I know that InstantSSL will be trusted on a customer of this application's computer?

A: 

Wikipedia to the rescue ! :-)

DarkDust  2010-08-25 17:44:29
Ignore my post, I didn't notice that it's about Windows code-signing.
DarkDust  2010-08-25 17:55:56
@DarkDust: You can always delete bad answers you make. That means only people with 10K+ rep can see your mistakes.
David Thornley  2010-08-25 18:08:34
A: 

InstantSSL certificates has Comodo as the root authority. It is installed and trusted by default on all recent Windows versions. (And it is on the current list)

driis  2010-08-25 17:45:05

related questions

Get the issuing CA for a given certificate
ColdFusion CFHTTP I/O Exception: peer not authenticated - even after adding certs to Keystore
Solutions to web service client certificates/auth best practices
What recognized computer language certificates exist?
What do CAs (Certificate Authority) deliver from CSR ?
Revoking certificate in c# with ICertAdmin2::RevokeCertificate method
Could not find trusted certificate
Missing X509 extensions in certificates created with Certificate Assistant
Which code signing authority should I go with?
ClickOnce Trusted Root Certification Authorities
Certificate Authority for myself/small organisation
Code signing Windows Mobile applications - Recommendations?
How do I programmatically remove a certificate in Trusted Root Certification Authorities?
Certificate autoenrollment errors on Win 2003 development server
How do I code Citrix web sites to use a Secure Gateway (CSG)?
Why is using a certificate, made with the MakeCert tool, in production bad?
Programmatic Signing of Native Windows Mobile Apps
Does a truststore need the sub-ca certificate?
What's the difference between class 1 and class 3 roots, and the certificates signed by them?
Getting issued certificates' info from windows server 2008 CA
Are CAs allowed to modify CSRs before signing?
Who sells the cheapest EV SSL certificate?
SSL Certificate encryption vs cypher encryption
What's the difference between rapidSSL and geotrust certificates?
What Certificate Authority Software is Available?