For Programmers: Free Programming Magazines  


Home > Archive > ASP > December 2006 > Verifying digital signatures of executables









You are viewing an archived Text-only version of the thread. To view this thread in it's original format and/or if you want to reply to this thread please [click here]

 

Author Verifying digital signatures of executables
damiri

2006-12-21, 6:56 pm

I have a web service that allows clients to download updated versions of
setup executables from the web server machine. It's pretty basic you give the
webservice a product name and a version and if there is a newer version of
the product it pushes it out with BITS.

All of the setup kits we push out are signed with authenticode. What I would
like to do is have the web service verify the digital signature of the setup
kits before they are pushed out. What is the best way of doing this in ASP?

It seems that there is a winapi function called WinVerifyTrust() that can be
used to do this but is this the most appropriate solution for a web service?
Sponsored Links







Also available: Server administration forum archive | Web Design forum archive | Software forum archive | Hardware reviews archive

Copyright 2008 codecomments.com