![]() An administrator can resign the package.Īpplying a patch to an administrative installation also removes the digital signature from the package. An administrative installation modifies the installation package in order to add the AdminProperties stream, which would invalidate the original digital signature. Performing an administrative installation removes the digital signature from the package. Note that the sample Setup.exe bootstrap provided with the Windows Installer SDK performs a signature check on a Windows Installer package prior to initiating the installation. ![]() The Windows Installer can perform signature validation of external cabinet files on all platforms where CryptoAPI version 2.0 is installed. Policies can be created to allow or prevent installations based upon different criteria, including a particular signer certificate or publisher. ![]() ![]() Windows Installer is integrated with Software Restriction Policy on Microsoft Windows XP. With Windows Installer, digital signatures can be used with Windows Installer packages, transforms, patches, merge modules, and external cabinet files. For more information regarding the use of digital signatures, digital certificates, and WinVerifyTrust, see the Security section of the Microsoft Windows Software Development Kit (SDK). A signer certificate may be compared to the signer certificate of an external resource to be installed by the package. The Windows Installer can use digital signatures to detect corrupted resources.
0 Comments
Leave a Reply. |