WoSign Code Signing Certificate for Microsoft Authenticode Signing Instrution
A WoSign Code Signing Certificate is strongly recommended for any publisher who plans to distribute code or content over the Internet or corporate extranets and needs to assure the integrity and authorship of that code. It support all version Windows OS and browsers.
Step 1: Download Signing Tools
The Platform SDK for Microsoft Windows contains the information and tools you need to develop Windows-based applications. You can use this SDK to develop both 32- and 64-bit applications. Make sure that you are running the most current version of the SDK.
Windows NT and Windows Me/98/95 : SignTool.exe is not supported.To download the software development kit (SDK) for Windows 2003/XP/2000, go to: Microsoft Windows Server 2003 Platform SDK .
To download the software development kit (SDK) for Windows Vista, go to: Microsoft Software Development Kit for Windows Vista .
To install the minimal tools needed for signing your files only install the Tools and Redistributable Components of the Microsoft Windows Core SDK .
Step 2: Signing Files
Windows 2003/XP/2000
To sign, you will use the SIGNTOOL.EXE utility included in the Platform SDK. You will also need your Digital ID file (generally called MyCredentials.spc) and your private key (MyPrivateKey.pvk).
To sign your file using Windows Vista, please refer to this.
Sign your File
The following steps will walk your through signing with the GUI.
- Go to: Start > Run
- Type CMD and click Ok .
- At the prompt change the directory to: C:\Program Files\Microsoft Platform SDK\Bin
- Type: signtool signwizard
- A wizard will appear, click Next .
- Browse to find the file you would like to digitally sign, and click Next .
- Select Custom then click Next .
- Click Select from File and locate your MyCert.spc file. Click Next .
- Click Select from File and locate your MyKey.pvk file. Click Next .
- Select sha1 and click Next twice.
- If you would like you can now enter a description of your file and a web site address where more information can be located, then click Next .
- Select Add a timestamp to the data and in the Timestamp Service URL enter: http://timestamp.digicert.com
- Click Next .
- Verify all of the information is correct and click Finish .
- You have successfully signed your file.
Test Your Signature
The Platform SDK SIGNTOOL.EXE utility contains a command to check a digital signature before distributing your file.
- Go to: Start > Run
- Type CMD and click Ok .
- At the prompt change the directory to: C:\Program Files\Microsoft Platform SDK\Bin
- Type: signtool verify /pa /v <your-file-name>
or: chktrust <your-file-name>
Note : Replace <your-file-name> with the name of the file you signed.
When a code signed file is downloaded from a Web site using Internet Explorer, it will display this certificate to the user. If the file is tampered with in any way after it has been signed, the user will be notified and given the option to refuse installation.
Related Information
For more information about signing see the Microsoft Developer Network Website .
Free Test
Please click here to test WoSign code signing certificate(with time stamping). or click here to test WoSign code signing certificate (without time stamping).