This topic has been archived. It cannot be replied.
-
工作学习 / 专业技术讨论 / Security 方面DX,请问SSLCertificates能不能用于Code Signing Certificates?已经买了SSL证书,有3个chain,同时有private key.但是是否可以用这3 chain certificates加private key用于Code Signing?
-shantang(河边);
2006-11-3
(#3301932@0)
-
up
-shantang(河边);
2006-11-3
(#3302330@0)
-
you can use it in whatever way you want. But whether your client is going to trust it or not is another story.Just because browsers trust your CA by default doesn't mean they have to trust the signing certificates as well.
-firebrand(Burning Wood);
2006-11-3
{113}
(#3302565@0)
-
theoretically, you can use your private key to do the code signing.When people are installing your signed component, there should be validation process by using your correspondent public key, which is included in your purchased certificate installed in their computer. people believe in your certificate simply because they put your issuer in trust, the top issuer is what we call "root". If two roots sign each other, what we also call "cross trusted". Hehe, things run in complicated. good luck for your code signing
-wendellsu(job offer wanted);
2006-11-4
{455}
(#3302643@0)
-
Thanks you for you guys reply.Thanks you for you guys reply. Actually, after I did a little bit research. Practically, it won't work. As versign and thrawn boths have difference ssl and code sign certificates. They can not be used for difference purpose. Theoretically, it is possible, but even I force the certificates and private key to be generated into keystore, and signed the code, the code is not successfully trusted.
-shantang(河边);
2006-11-4
{396}
(#3303574@0)