Thanks for the prompt response Adam. So basically I should point the [EMAIL PROTECTED] element to the public key (spc file) representing my company signatures? If that's so, Is it possible to extract it from already signed file? If so how?
-----Original Message----- From: Adam Majer [mailto:[EMAIL PROTECTED] Sent: Monday, May 19, 2008 4:10 AM To: Albert Shamsiyan Cc: Wix-Community (wix-users@lists.sourceforge.net) Subject: Re: [WiX-users] DigitalCertificate Element Albert Shamsiyan wrote: > Wix help regarding DigitalCertificate Element, states that the > SourceFile is The path to the certificate file. Is it possible to > extract it from already signed file? If so how? Can I just use a signed > file or I must use the certificate file? Err, no. Digital certificates do not work that way. Unless MSI works in some non-standard way, in a signed message you have, 1. digital signature element - this is kind of like a hash of the MSI unique to the certificate. The certificate ID is generally in the signature. BUT, you need to locate the certificate. Since certificates for MSI files are not exactly public info, you need, 2. digital certificate element - the *public* part of the certificate. You can use this to verify that the signature is correct. You will also have a *private* part of the certificate that is used to generate the digital certificate in the first place. If this part is even disclosed or even not 100% secured, the signature cannot be trusted and certificate must be revoked. Finally, each digital *public* part of the certificate is signed by a trusted 3rd party, be it your company or another public source. I hope this overview clarifies the confusion for people that never deal with certificates or know how this stuff works. A signature is not the public part of certificate which is not a private part of certificate (never disclose the private part to ANYONE you do not implicitly trust). - Adam ------------------------------------------------------------------------- This SF.net email is sponsored by: Microsoft Defy all challenges. Microsoft(R) Visual Studio 2008. http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/ _______________________________________________ WiX-users mailing list WiX-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/wix-users
