On Mon, 26 Dec 2005 15:02:49 +0800, "Andy Chen" <pp****@hotmail.com>
wrote:
Hi,
I have to verify a lot of installation packages which are digital signed.
You can verify a file on the property sheet, but I am working on southands
of files. I am planning to create a tool to do this work. Anybody have some
ideas about this?
Andy
I would suggest possibly contacting Microsoft at some point. I had to
do this for a company I once worked for and it was, unfortunately, not
straight forward. I would send you my work but the company had
ownership by virtue of my employment contract so I deleted it when
completed.
Depending on the certificate you are using it may contain browser
extensions which are, you guessed it, not standard. Microsoft did
provide some sample code to the company I was working at for decoding
certificates targeted at IE. You may need to learn how to walk the
file header to find the location of the various pieces of information
and the sizes. I believe you will also need to get the Authenticode
tools/sdk from Microsoft.
Here are some links that may be helpful getting you started:
http://support.microsoft.com/default...b;en-us;195724 http://msdn.microsoft.com/library/de...ml/signfaq.asp http://msdn.microsoft.com/library/de...aphy_tools.asp
Things may have changed since I last worked with this technology so
YMMV. You might want to visit the links first and see where it takes
you, or, hopefully, someone will be able to give you something more
concrete than I was able to.
Good luck. [8-)
Ken Wilson
Seeking viable employment in Victoria, BC