Let's say we have version 2.0 of an application deployed with around 3000 users already running the application.
So far, the application was unsigned(signed by some auto generated certificate from VS).
The users are using .NET 2.0.
Now we would like to deploy a new version that will be signed using a certificate from tucows. One of the answers below indicates that in case we are targeting .NET Framework 2.0, changing a code signing certificate would "break" the identity of the application. What does this mean?
How can one add a new code signing certificate to existing deployment?
Notifying all the users to reinstall the application from scratch (or from a new URL) is not possible.
( EDIT: this was previous requirement, is not valid now:
I would like to ensure that the existing users will not be able to see the update at all (they should not receive notification that a new version is available), while all new users will receive the signed version when they are installing for the first time. Just signing the deployment should not be a reason to bother existing users. )