The Importance of Code Signing

Previous page
Table of content
Next page

Signing your code, especially setup code, is critical for creating a friendly experience for your customers. Windows Vista has the ability to prevent unsigned applications from launching with a full administrator access token. You can check this option, and the other UAC options, by performing these steps:

  1. Run gpedit.msc.

  2. Confirm consent to run the application.

  3. In Group Policy (it might say Local Computer Policy), expand Computer Configuration, then expand Security Settings and Local Policies, and finally expand Security Options.

  4. Scroll to the bottom of the list, and you’ll see a series of options prefixed with “User Account Control.”

  5. Right-click the security setting that you’d like to view or change.

If the “User Account Control: Only elevate executables that are signed and validated” is enabled, then only digitally signed applications can elevate to administrator. So, if you want your application to operate correctly in locked-down environments, while displaying a more user-friendly user interface, it should be signed with an Authenticode signature.

“Signing and Checking Code with Authenticode” at (MSDN 2002) explains the steps required to digitally sign your code.


Previous page
Table of content
Next page
Writing Secure Code for Windows Vista
Writing Secure Code for Windows Vista (Best Practices (Microsoft))
ISBN: 0735623937
EAN: 2147483647
Year: 2004
Pages: 122
Authors: Michael Howard, David LeBlanc
BUY ON AMAZON
Metrics and Models in Software Quality Engineering (2nd Edition)
A+ Fast Pass
Systematic Software Testing (Artech House Computer Library)
MySQL Clustering
C & Data Structures (Charles River Media Computer Engineering)
Comparing, Designing, and Deploying VPNs
flylib.com © 2008-2017.
If you may any questions please contact us: flylib@qtcs.net
Privacy policy